Jorge Riopedre

2 exploits Active since Sep 2023

CVE-2023-44042 WRITEUP MEDIUM WRITEUP

Black Cat CMS 1.4.1 - XSS

A stored cross-site scripting (XSS) vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter.

CVSS 5.4

View Code

CVE-2023-44043 WRITEUP MEDIUM WRITEUP

Black Cat CMS 1.4.1 - XSS

A reflected cross-site scripting (XSS) vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter.

CVSS 6.1

View Code