Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:classcms:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Classcms (fa950752-e614-5ea9-a0d7-1d2b2c82babc) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-8145 |
vulnerable | 2026-06-08 07:00:22.739360 |
ClassCMS Article admin cross site scripting
LOW (2.4)
A vulnerability, which was classified as problematic, has been found in ClassCMS 4.8. Affected by this issue is some unknown functionality of the file /index.php/admin of the component Article Handler. The manipulation of the argument Title leads to basic cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2024-08-25T05:31:04.029Z
Updated: 2024-08-26T13:48:34.820Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-8144 |
vulnerable | 2026-06-08 07:00:22.737526 |
ClassCMS Logo admin cross site scripting
LOW (3.5)
A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2024-08-25T03:31:03.994Z
Updated: 2024-08-26T16:24:27.546Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-6932 |
vulnerable | 2026-06-08 06:58:20.782107 |
ClassCMS cross site scripting
LOW (3.5)
A vulnerability was found in ClassCMS 4.5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/?action=home&do=shop:index&keyword=&kind=all. The manipulation of the argument order leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-271987.
Published: 2024-07-20T21:31:04.132Z
Updated: 2024-08-01T21:45:38.339Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-12666 |
vulnerable | 2026-06-08 06:25:35.869677 |
ClassCMS User Management Page admin insufficient privileges
MEDIUM (4.7)
A vulnerability has been found in ClassCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin?do=admin:user:editPost of the component User Management Page. The manipulation leads to improper handling of insufficient privileges. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2024-12-16T20:00:12.804Z
Updated: 2024-12-17T14:29:37.195Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-12503 |
vulnerable | 2026-06-08 06:25:35.414945 |
ClassCMS Model Management Page admin cross site scripting
LOW (2.4)
A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Model Management Page. The manipulation of the argument URL leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2024-12-12T00:00:12.835Z
Updated: 2024-12-12T15:47:52.404Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.