Vulnerabilities > Frog CMS Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-22 | CVE-2019-1010235 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 1.1 Frog CMS 1.1 is affected by: Cross Site Scripting (XSS). | 5.4 |
| 2019-02-11 | CVE-2018-20778 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 admin/?/plugin/file_manager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element. | 6.1 |
| 2019-02-11 | CVE-2018-20777 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field. | 5.4 |
| 2019-02-11 | CVE-2018-20774 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field. | 5.4 |
| 2019-01-12 | CVE-2019-6243 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI). | 6.1 |
| 2019-01-09 | CVE-2018-20680 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field. | 4.8 |
| 2018-12-25 | CVE-2018-20448 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI. | 5.4 |
| 2018-09-03 | CVE-2018-16374 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings. | 4.8 |
| 2018-09-03 | CVE-2018-16373 | Unrestricted Upload of File with Dangerous Type vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has an Upload vulnerability that can create files via /admin/?/plugin/file_manager/save. | 4.9 |
| 2018-04-11 | CVE-2018-9992 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has XSS via the name field of a new "File" or "Directory" on the admin/?/plugin/file_manager/browse/ screen. | 4.8 |