2111715623/cms

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-26489 ↗	Feb 22, 2024Thursday, 22 February 2024, 06:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Social block links' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Profile Name text field.
CVE-2024-26490 ↗	Feb 22, 2024Thursday, 22 February 2024, 06:15	5.4 MEDIUM	—
A cross-site scripting (XSS) vulnerability in the Addon JD Simple module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field.
CVE-2024-26491 ↗	Feb 22, 2024Thursday, 22 February 2024, 06:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Media Gallery with description' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Gallery name text field.