CVE-2021-47738 | CSZ CMS 1.2.7 Private Message cross site scripting (Exploit 48354 / EDB-48354)

Inserito da Angelo Barbosa | Dic 23, 2025 | CVE

A vulnerability classified as problematic has been found in CSZ CMS 1.2.7. This affects an unknown part of the component Private Message Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2021-47738. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2021-47738 | CSZ CMS 1.2.7 Private Message cross site scripting (Exploit 48354 / EDB-48354)

Post correlati

CVE-2025-13075 | code-projects Responsive Hotel Site 1.0 usersettingdel.php eid sql injection

CVE-2025-1168 | SourceCodester Contact Manager with Export to VCF 1.0 delete-contact.php contact sql injection

CVE-2023-35123 | Intel OpenBMC prior egs-1.14-0/bhs-0.27 uncaught exception in servlet (intel-sa-01078)

CVE-2024-39532 | Juniper Networks Junos OS/Junos OS Evolved prior 22.3R2 log file (JSA82992)