Aggregates CVE and security vulnerability intelligence across all frogcms_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk csrf and vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact session compromise, affecting vendor surface software deployment scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2018-10321 | Frog CMS 0.9.5 has a stored Cross Site Scripting Vulnerability via "Admin Site title" in Settings. | [email protected] | 4.8 | 1.29% | 2018-04-24 | 2024-11-21 |
| CVE-2018-10320 | Frog CMS 0.9.5 has XSS via the admin/?/layout/edit layout[name] parameter, aka Edit Layout. | [email protected] | 4.8 | 0.24% | 2018-04-24 | 2024-11-21 |
| CVE-2018-10319 | Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit snippet[name] parameter, aka Edit Snippet. | [email protected] | 4.8 | 0.24% | 2018-04-24 | 2024-11-21 |
| CVE-2018-10318 | Frog CMS 0.9.5 has XSS via the admin/?/page/edit page[keywords] parameter, aka Edit Page Metadata. | [email protected] | 4.8 | 0.24% | 2018-04-24 | 2024-11-21 |