Maxsite : Security Vulnerabilities, CVEs,
Cross Site Scripting vulnerability in Maxsite CMS v.108.7 allows a remote attacker to execute arbitrary code via the f_content parameter in the admin/page_new file.
Max CVSS
6.1
EPSS Score
0.06%
Published
2023-07-03
Updated
2023-07-10
A reflected cross-site scripting (XSS) vulnerability in MaxSite CMS before V106 via product/page/* allows remote attackers to inject arbitrary web script to a page.
Max CVSS
6.1
EPSS Score
0.14%
Published
2021-08-03
Updated
2021-08-06
SQL injection vulnerability in index.php in MAXSITE 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter in a webboard action.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-05-28
Updated
2017-09-29
3 vulnerabilities found