IDCVSSSummaryLast (major) updatePublished
CVE-2017-1000058 4.3
Stored XSS vulnerabilities in chevereto CMS before version 3.8.11, one in the user profile and one in the Exif data parser.
31-10-2017 - 01:29 17-07-2017 - 13:18
CVE-2018-12030 3.5
Chevereto Free before 1.0.13 has XSS.
01-08-2018 - 13:29 15-06-2018 - 16:29
CVE-2012-2918 4.3
Cross-site scripting (XSS) vulnerability in Upload/engine.php in Chevereto 1.91 allows remote attackers to inject arbitrary web script or HTML via the v parameter.
29-08-2017 - 01:31 21-05-2012 - 22:55
CVE-2012-2919 5.0
Directory traversal vulnerability in Upload/engine.php in Chevereto 1.9.1 allows remote attackers to determine the existence of arbitrary files via a .. (dot dot) in the v parameter.
29-08-2017 - 01:31 21-05-2012 - 22:55
Back to Top Mark selected
Back to Top