CVE-2021-45787
Summary
| CVE | CVE-2021-45787 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-03-16 13:15:00 UTC |
| Updated | 2022-03-22 17:11:00 UTC |
| Description | There is a stored Cross Site Scripting (XSS) vulnerability in maccms v10 through adding videos. XSS code can be inserted at parameter positions including name and remarks. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Maccms | Maccms | 10.0 | - | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.03.15 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.03.21 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.04.02 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.01 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.02.1005 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.03.0000 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.04.1320 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.07.1213 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.08.2020 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.09.1320 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.11.2300 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.15.1403 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.17.1050 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.22.1338 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.05.30.1007 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.06.04.1510 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.06.08.1339 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.06.12.1430 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.06.15.0910 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.06.29.1425 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.07.29.1010 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.08.14.0955 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.08.24.1355 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.08.25.1120 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.09.03.0920 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.09.14.0850 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.09.28.0950 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.10.09.1333 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.10.13.1025 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.10.22.1200 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.10.31.1340 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.11.18.0920 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.12.05.0950 | All | All |
| Application | Maccms | Maccms | 10.0 | 2018.12.13.2151 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1001 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1002 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1003 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1004 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1005 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1006 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1007 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.00.00.1008 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.01.19.1001 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.0101.1001 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.02.23.0850 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.03.06.1617 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1009 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1010 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1011 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1012 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1013 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1014 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1015 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1016 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1017 | All | All |
| Application | Maccms | Maccms | 10.0 | 2019.1000.1018 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1019 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1020 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1021 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1022 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1023 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1024 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1025 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1027 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1029 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1031 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1032 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1033 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1034 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1035 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1039 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1042 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1051 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1060 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1062 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1068 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1068b | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1069 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1074 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1075 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1080 | All | All |
| Application | Maccms | Maccms | 10.0 | 2020.1000.1081 | All | All |
| Application | Maccms | Maccms | 10.0 | 2021.1000.1081 | All | All |
| Application | Maccms | Maccms | 10.0 | 2022.1000.1099 | All | All |
| Application | Maccms | Maccms | 10.0 | 2022.1000.3001 | All | All |
| Application | Maccms | Maccms | 10.0 | 2022.1000.3002 | All | All |
| Application | Maccms | Maccms | 10.0 | 2022.1000.3004 | All | All |
| Application | Maccms | Maccms | 10.0 | 2022.1000.3005 | All | All |
| Application | Maccms | Maccms | 10.0 | 2022.1000.3025 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 网站后台添加视频处存在存储型XSS漏洞(There is a cross-site scripting (XSS) vulnerability in adding videos) · Issue #746 · magicblack/maccms10 · GitHub | MISC | github.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.