Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-10-02	CVE-2018-17595	Cross-site Scripting vulnerability in Fork-Cms Fork CMS 5.4.0 In the 5.4.0 version of the Fork CMS software, HTML Injection and Stored XSS vulnerabilities were discovered via the /backend/ajax URI. network low complexity fork-cms CWE-79	6.1
2018-01-04	CVE-2018-5215	Cross-site Scripting vulnerability in Fork-Cms Fork CMS 5.0.7 Fork CMS 5.0.7 has XSS in /private/en/pages/edit via the title parameter. network low complexity fork-cms CWE-79	5.4