5.1

CVSS4.0

CVE-2025-41055 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/dialogs.

📅 Published: Sept. 4, 2025, 11:13 a.m. 🔄 Last Modified: Sept. 4, 2025, 5:51 p.m.

5.1

CVSS4.0

CVE-2025-41054 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/cycle.

📅 Published: Sept. 4, 2025, 11:13 a.m. 🔄 Last Modified: Sept. 4, 2025, 5:53 p.m.

5.1

CVSS4.0

CVE-2025-41053 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/commonresource.

📅 Published: Sept. 4, 2025, 11:13 a.m. 🔄 Last Modified: Sept. 4, 2025, 5:51 p.m.

5.1

CVSS4.0

CVE-2025-41052 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/canvasjs.

📅 Published: Sept. 4, 2025, 11:13 a.m. 🔄 Last Modified: Sept. 4, 2025, 5:52 p.m.

5.1

CVSS4.0

CVE-2025-41051 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/bootstrap.

📅 Published: Sept. 4, 2025, 11:13 a.m. 🔄 Last Modified: Sept. 4, 2025, 6:42 p.m.

5.1

CVSS4.0

CVE-2025-41050 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/base_libs.

📅 Published: Sept. 4, 2025, 11:12 a.m. 🔄 Last Modified: Sept. 4, 2025, 6:42 p.m.

5.1

CVSS4.0

CVE-2025-41049 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/appform.

📅 Published: Sept. 4, 2025, 11:12 a.m. 🔄 Last Modified: Sept. 4, 2025, 6:43 p.m.

5.1

CVSS4.0

CVE-2025-41048 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/admin.

📅 Published: Sept. 4, 2025, 11:12 a.m. 🔄 Last Modified: Sept. 4, 2025, 6:43 p.m.

5.1

CVSS4.0

CVE-2025-41047 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/ace.

📅 Published: Sept. 4, 2025, 11:12 a.m. 🔄 Last Modified: Sept. 4, 2025, 6:43 p.m.

5.1

CVSS4.0

CVE-2025-41046 - Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[Addon][layouts]' and 'data[Addon][layouts_except]' parameters in /apprain/developer/addons/update/960grid.

📅 Published: Sept. 4, 2025, 11:12 a.m. 🔄 Last Modified: Sept. 4, 2025, 6:43 p.m.
Total resulsts: 309064
Page 90 of 30,907
« previous page » next page
Filters