Magnolia CVE - OpenCVE

Filtered by vendor Magnolia Subscribe

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2008-1953	1 Magnolia	1 Site Designer	2024-02-04	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in the Sitedesigner before 1.1.5 search template in Magnolia Enterprise Edition allows remote attackers to inject arbitrary web script or HTML via the query parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-0701	1 Magnolia	1 Ce	2024-02-04	5.0 MEDIUM	N/A
ActivationHandler in Magnolia CE 3.5.x before 3.5.4 does not check permissions during importing, which allows remote attackers to have an unknown impact via activation of a new item, possibly involving addition of arbitrary new content.
CVE-2005-4361	1 Magnolia	1 Content Management Suite	2024-02-04	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in search.html in Magnolia Content Management Suite 2.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter.

Vulnerabilities (CVE)