Vulnerabilities > MAX 3000 > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-02-28 CVE-2022-25410 Cross-site Scripting vulnerability in Max-3000 Maxsite CMS 108
Maxsite CMS v180 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_file_description at /admin/files.
network
low complexity
max-3000 CWE-79
5.4
5.4
2022-02-28 CVE-2022-25413 Cross-site Scripting vulnerability in Max-3000 Maxsite CMS 108
Maxsite CMS v108 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_tags at /admin/page_edit/3.
network
low complexity
max-3000 CWE-79
5.4
5.4