{"id":3576,"date":"2014-06-15T08:04:04","date_gmt":"2014-06-15T07:04:04","guid":{"rendered":"http:\/\/www.cms-content-migration.de\/?p=3576"},"modified":"2016-04-20T06:18:54","modified_gmt":"2016-04-20T04:18:54","slug":"xss-luecke-in-impresscms-1-3-6-1","status":"publish","type":"post","link":"https:\/\/www.media-deluxe.de\/blog\/2014\/06\/xss-luecke-in-impresscms-1-3-6-1\/","title":{"rendered":"XSS-L\u00fccke in ImpressCMS 1.3.6.1"},"content":{"rendered":"<div class=\"newsflash\">F\u00fcr die aktuelle, am 26.2.2014 ver\u00f6ffentlichte Version 1.3.6.1 des Open Source Content Management Systems ImpressCMS meldet NIST eine XSS-Verwundbarkeit in modules\/system\/admin.php mit dem <a href=\"hhttps:\/\/www.media-deluxe.de\/blog\/2012\/04\/cvss-common-vulnerability-scoring-system\/\">CVSS<\/a> v2 Base Score: 4.3 (MEDIUM) (AV:N\/AC:M\/AU:N\/C:N\/I:P\/A:N). ImpressCMS arbeitet derzeit an dem Versionszweig 2.x, die Version 2.0.0 befindet sich jedoch noch im Alpha-Stadium. Details: <a href=\"http:\/\/web.nvd.nist.gov\/view\/vuln\/detail?vulnId=CVE-2014-4036\" target=\"_blank\" rel=\"nofollow\">Vulnerability Summary for CVE-2014-4036<\/a> (12.6.2014)<\/div>\n","protected":false},"excerpt":{"rendered":"<p>F\u00fcr die aktuelle, am 26.2.2014 ver\u00f6ffentlichte Version 1.3.6.1 des Open Source Content Management Systems ImpressCMS meldet NIST eine XSS-Verwundbarkeit in modules\/system\/admin.php mit dem CVSS v2 Base Score: 4.3 (MEDIUM) (AV:N\/AC:M\/AU:N\/C:N\/I:P\/A:N). ImpressCMS arbeitet derzeit an dem Versionszweig 2.x, die Version 2.0.0 &hellip; <a class=\"more-link\" href=\"https:\/\/www.media-deluxe.de\/blog\/2014\/06\/xss-luecke-in-impresscms-1-3-6-1\/\"> Weiter&#8230;<\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[278,279],"tags":[11,244,322,331,129,418,419],"class_list":["post-3576","post","type-post","status-publish","format-standard","hentry","category-cms-news","category-cms-sicherheitswarnungen","tag-cms","tag-content-management-systeme","tag-freie-software","tag-impresscms","tag-open-source","tag-wcm","tag-web-content-management"],"_links":{"self":[{"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/posts\/3576","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/comments?post=3576"}],"version-history":[{"count":1,"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/posts\/3576\/revisions"}],"predecessor-version":[{"id":3647,"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/posts\/3576\/revisions\/3647"}],"wp:attachment":[{"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/media?parent=3576"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/categories?post=3576"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.media-deluxe.de\/blog\/wp-json\/wp\/v2\/tags?post=3576"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}