Sitefinity Cms
Approved changes feed: RSS · Atom
cpe:2.3:a:progress:sitefinity_cms:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Progress (f9d80521-f73f-5a85-8df9-9306f2f67809) |
|---|---|
| Product | Sitefinity Cms (7f84806d-5e2b-5df2-bac4-4c746ee6972e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-17056 |
vulnerable | 2026-06-03 14:38:21.357895 |
Details available
Cross-site scripting (XSS) vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published: 2018-09-28T00:00:00.000Z
Updated: 2024-08-05T10:39:59.468Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-17054 |
vulnerable | 2026-06-03 14:38:21.356184 |
Details available
Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0 through 11.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to login request parameters, a different vulnerability than CVE-2018-17053.
Published: 2018-10-03T18:00:00.000Z
Updated: 2024-08-05T10:39:59.518Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-17053 |
vulnerable | 2026-06-03 14:38:21.355794 |
Details available
Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0 through 11.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to login request parameters, a different vulnerability than CVE-2018-17054.
Published: 2018-10-03T18:00:00.000Z
Updated: 2024-08-05T10:39:59.519Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-9140 |
vulnerable | 2026-06-03 14:37:41.099073 |
Details available
Cross-site scripting (XSS) vulnerability in Telerik.ReportViewer.WebForms.dll in Telerik Reporting for ASP.NET WebForms Report Viewer control before R1 2017 SP2 (11.0.17.406) allows remote attackers to inject arbitrary web script or HTML via the bgColor parameter to Telerik.ReportViewer.axd.
Published: 2017-05-22T04:54:00.000Z
Updated: 2024-08-05T16:55:22.233Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-18639 |
vulnerable | 2026-06-03 14:36:57.334164 |
Details available
Progress Sitefinity CMS before 10.1 allows XSS via /Pages Parameter : Page Title, /Content/News Parameter : News Title, /Content/List Parameter : List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Parameter : Document Title, /Content/Images/LibraryImages/newsimages Parameter : Image Title, /Content/links Parameter : Link Title, /Content/links Parameter : Link Title, or /Content/Videos/LibraryVideos/default-video-library Parameter : Video Title.
Published: 2019-11-06T15:07:40.000Z
Updated: 2024-08-05T21:28:55.749Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.