Vulnerabilities > Genixcms > Genixcms > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-26 | CVE-2017-14740 | Cross-site Scripting vulnerability in Genixcms 1.1.0 Cross-site scripting (XSS) vulnerability in GeniXCMS 1.1.0 allows remote authenticated users to inject arbitrary web script or HTML via the Menu ID when adding a menu. | 3.5 |
| 2017-05-04 | CVE-2017-8780 | Cross-site Scripting vulnerability in Genixcms 1.0.2 GeniXCMS 1.0.2 has XSS triggered by a comment that is mishandled during a publish operation by an administrator, as demonstrated by a malformed P element. | 3.5 |
| 2017-05-03 | CVE-2017-8762 | Cross-site Scripting vulnerability in Genixcms 1.0.2 GeniXCMS 1.0.2 has XSS triggered by an authenticated user who submits a page, as demonstrated by a crafted oncut attribute in a B element. | 3.5 |
| 2017-05-01 | CVE-2017-8376 | Cross-site Scripting vulnerability in Genixcms 1.0.2 GeniXCMS 1.0.2 has XSS triggered by an authenticated comment that is mishandled during a mouse operation by an administrator. | 3.5 |