CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Monstra » Monstra » 3.0.4 : Security Vulnerabilities

Cpe Name:cpe:/a:monstra:monstra:3.0.4
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2018-18694 79 XSS 2018-10-29 2018-12-06
3.5
None Remote Medium Single system None Partial None
admin/index.php?id=filesmanager in Monstra CMS 3.0.4 allows remote authenticated administrators to trigger stored XSS via JavaScript content in a file whose name lacks an extension. Such a file is interpreted as text/html in certain cases.
2 CVE-2018-17026 79 XSS 2018-09-13 2018-10-30
3.5
None Remote Medium Single system None Partial None
admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an edit_page&name=error404 action, a different vulnerability than CVE-2018-10121.
3 CVE-2018-17025 79 XSS 2018-09-13 2018-10-30
4.3
None Remote Medium Not required None Partial None
admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an edit_page action for a page with no special role.
4 CVE-2018-17024 79 XSS 2018-09-13 2019-07-23
3.5
None Remote Medium Single system None Partial None
admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an add_page action.
5 CVE-2018-16979 113 2018-09-12 2018-10-31
5.8
None Remote Medium Not required Partial Partial None
Monstra CMS V3.0.4 allows HTTP header injection in the plugins/captcha/crypt/cryptographp.php cfg parameter, a related issue to CVE-2012-2943.
6 CVE-2018-16978 79 XSS 2018-09-12 2018-10-31
4.3
None Remote Medium Not required None Partial None
Monstra CMS V3.0.4 has XSS when ones tries to register an account with a crafted password parameter to users/registration, a different vulnerability than CVE-2018-11473.
7 CVE-2018-16977 200 +Info 2018-09-12 2018-10-31
5.0
None Remote Low Not required Partial None None
Monstra CMS V3.0.4 has an information leakage risk (e.g., PATH, DOCUMENT_ROOT, and SERVER_ADMIN) in libraries/Gelato/ErrorHandler/Resources/Views/Errors/exception.php.
8 CVE-2018-16820 22 Dir. Trav. 2018-09-18 2018-11-07
5.0
None Remote Low Not required Partial None None
admin/index.php in Monstra CMS 3.0.4 allows arbitrary directory listing via id=filesmanager&path=uploads/.......//./.......//./ requests.
9 CVE-2018-16819 22 Dir. Trav. 2018-09-18 2018-11-19
5.5
None Remote Low Single system None Partial Partial
admin/index.php in Monstra CMS 3.0.4 allows arbitrary file deletion via id=filesmanager&path=uploads/.......//./.......//./&delete_file= requests.
10 CVE-2018-16608 639 2018-09-10 2019-10-02
4.0
None Remote Low Single system Partial None None
In Monstra CMS 3.0.4, an attacker with 'Editor' privileges can change the password of the administrator via an admin/index.php?id=users&action=edit&user_id=1, Insecure Direct Object Reference (IDOR).
11 CVE-2018-15886 94 Exec Code 2018-09-10 2018-11-14
6.5
None Remote Low Single system Partial Partial Partial
Monstra CMS 3.0.4 does not properly restrict modified Snippet content, as demonstrated by the admin/index.php?id=snippets&action=edit_snippet&filename=google-analytics URI, which allows attackers to execute arbitrary PHP code by placing this code after a <?php substring.
12 CVE-2018-14922 79 XSS 2018-08-14 2018-10-11
4.3
None Remote Medium Not required None Partial None
Multiple cross-site scripting (XSS) vulnerabilities in Monstra CMS 3.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) first name or (2) last name field in the edit profile page.
13 CVE-2018-11475 384 2018-05-25 2018-06-28
6.0
None Remote Medium Single system Partial Partial Partial
Monstra CMS 3.0.4 has a Session Management Issue in the Users tab. A password change at users/1/edit does not invalidate a session that is open in a different browser.
14 CVE-2018-11474 384 2018-05-25 2018-06-28
6.0
None Remote Medium Single system Partial Partial Partial
Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password change at admin/index.php?id=users&action=edit&user_id=1 does not invalidate a session that is open in a different browser.
15 CVE-2018-11473 79 XSS 2018-05-25 2018-06-26
4.3
None Remote Medium Not required None Partial None
Monstra CMS 3.0.4 has XSS in the registration Form (i.e., the login parameter to users/registration).
16 CVE-2018-11472 79 XSS 2018-05-25 2018-06-26
4.3
None Remote Medium Not required None Partial None
Monstra CMS 3.0.4 has Reflected XSS during Login (i.e., the login parameter to admin/index.php).
17 CVE-2018-10121 79 XSS 2018-04-16 2018-05-16
3.5
None Remote Medium Single system None Partial None
plugins/box/pages/pages.admin.php in Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the title section of an admin/index.php?id=pages&action=edit_page&name=error404 (aka Edit 404 page) action.
18 CVE-2018-10118 79 XSS 2018-04-16 2018-06-09
3.5
None Remote Medium Single system None Partial None
Monstra CMS 3.0.4 has Stored XSS via the Name field on the Create New Page screen under the admin/index.php?id=pages URI, related to plugins/box/pages/pages.admin.php.
19 CVE-2018-10109 79 XSS 2018-04-16 2018-05-16
3.5
None Remote Medium Single system None Partial None
Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the content section of a new page in the blog catalog.
20 CVE-2018-9038 22 Dir. Trav. 2018-04-10 2019-10-02
5.5
None Remote Low Single system None Partial Partial
Monstra CMS 3.0.4 allows remote attackers to delete files via an admin/index.php?id=filesmanager&delete_dir=./&path=uploads/ request.
21 CVE-2018-9037 434 Exec Code 2018-04-10 2018-05-17
6.5
None Remote Low Single system Partial Partial Partial
Monstra CMS 3.0.4 allows remote code execution via an upload_file request for a .zip file, which is automatically extracted and may contain .php files.
22 CVE-2018-6550 79 XSS 2018-02-02 2018-02-14
3.5
None Remote Medium Single system None Partial None
Monstra CMS through 3.0.4 has XSS in the title function in plugins/box/pages/pages.plugin.php via a page title to admin/index.php.
23 CVE-2018-6383 184 Exec Code 2018-01-29 2018-02-21
6.5
None Remote Low Single system Partial Partial Partial
Monstra CMS through 3.0.4 has an incomplete "forbidden types" list that excludes .php (and similar) file extensions but not the .pht or .phar extension, which allows remote authenticated Admins or Editors to execute arbitrary PHP code by uploading a file, a different vulnerability than CVE-2017-18048.
24 CVE-2017-18048 434 Exec Code 2018-01-23 2018-02-08
6.5
None Remote Low Single system Partial Partial Partial
Monstra CMS 3.0.4 allows users to upload arbitrary files, which leads to remote command execution on the server, for example because .php (lowercase) is blocked but .PHP (uppercase) is not.
Total number of vulnerabilities : 24   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.