Cross-Site Scripting Vulnerability in Saurus CMS by Saurus
CVE-2010-1997

Currently unrated

Key Information:

Vendor

Saurus

Status
Saurus Cms
Vendor
CVE Published:
20 May 2010

What is CVE-2010-1997?

Saurus CMS 4.7.0 contains a cross-site scripting vulnerability that enables remote authenticated users with 'Article list' edit privileges to inject arbitrary web scripts or HTML code through the pealkiri parameter in admin/edit.php. This flaw could be exploited to execute scripts in the context of other users, potentially leading to unauthorized actions, data theft, or other malicious activities on the platform.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/archive/1/511223/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://osvdb.org/64570
vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/40059
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.