Filtered by vendor Laracms Project Subscriptions
Filtered by product Laracms Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-20129 1 Laracms Project 1 Laracms 2024-08-04 5.4 Medium
LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the content editor.
CVE-2020-20131 1 Laracms Project 1 Laracms 2024-08-04 5.4 Medium
LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows atackers to execute arbitrary web scripts or HTML via a crafted payload in the page management module.
CVE-2020-20128 1 Laracms Project 1 Laracms 2024-08-04 7.5 High
LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers.