Vulnerabilities (CVE)

Filtered by vendor Webboss Subscribe
Filtered by product Webboss.io Cms
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-39097 1 Webboss 1 Webboss.io Cms 2024-11-21 N/A 5.4 MEDIUM
WebBoss.io CMS v3.7.0.1 contains a stored cross-site scripting (XSS) vulnerability.
CVE-2023-39096 1 Webboss 1 Webboss.io Cms 2024-11-21 N/A 5.4 MEDIUM
WebBoss.io CMS v3.7.0.1 contains a stored Cross-Site Scripting (XSS) vulnerability due to lack of input validation and output encoding.
CVE-2023-37742 1 Webboss 1 Webboss.io Cms 2024-11-21 N/A 6.1 MEDIUM
WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability.
CVE-2023-36339 1 Webboss 1 Webboss.io Cms 2024-11-21 N/A 7.5 HIGH
An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request.