📦 Piranha Cms

This CSRF vulnerability in PiranhaCMS allows attackers to trick authenticated administrators into performing unauthorized actions like deleting users, roles, posts, or media folders by crafting malici...

A stored cross-site scripting vulnerability in Piranha CMS v12.1 allows attackers to inject malicious scripts into the Excerpt field of the Page Settings module. When users view affected pages, the sc...

A stored cross-site scripting vulnerability in Piranha CMS v12.1 allows attackers to inject malicious scripts into the Media module's Name field. This affects all users of Piranha CMS v12.1 who have t...

A stored cross-site scripting vulnerability in Piranha CMS v12.0 allows authenticated attackers to inject malicious scripts into Markdown blocks when creating pages. This affects all Piranha CMS v12.0...

PiranhaCMS 12.0 contains a stored cross-site scripting (XSS) vulnerability in the Text content block editor. Attackers can inject malicious JavaScript that executes in other users' browsers when they ...

A stored cross-site scripting vulnerability in Piranha CMS allows authenticated attackers to inject malicious JavaScript into pages via markdown content. When users view these pages, the script execut...