74cms Cross-Site Scripting Vulnerability (CNVD-2022-58895)

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology. 74cmsSE version v3.5.1 contains a cross-site scripting vulnerability that stems from a lack of data validation filtering of user-supplied data and output from path/job. An attacker could exploit this vulnerabili...

74cms cross-site scripting vulnerability (CNVD-2022-58889)

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology. 74cmsSE version v3.5.1 contains a cross-site scripting vulnerability that originates from the path /company/downresume/total/nature lack of data validation filtering of user-supplied data and output. An attacker...

Jfinal CMS Cross-Site Scripting Vulnerability (CNVD-2022-58383)

Jfinal CMS is a java development of powerful information consulting website , using a simple and powerful JFinal as the web framework , template engine with beetl, database with mysql, front-end bootstrap framework. Jfinal CMS v5.1.0 version of the cross-site scripting vulnerability , the...

74cms cross-site scripting vulnerability (CNVD-2022-58891)

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology Company. 74cmsSE version v3.5.1 contains a cross-site scripting vulnerability that originates from the path /company/viewbebrowsed/total missing data validation filters for user-supplied data and output. An...

74cms Cross-Site Scripting Vulnerability (CNVD-2022-58894)

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology Co. 74cmsSE version v3.5.1 contains a cross-site scripting vulnerability, which originates from the lack of user-supplied data and output data validation filtering in /index/notice/show. An attacker could exploit...

The vulnerability of the AV1 Video Extension codec, which stems from insufficient validation of input data, allows attackers to execute arbitrary code.

The vulnerability of the AV1 Video Extension codec is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to execute arbitrary code...

The vulnerability of the AV1 Video Extension codec, which stems from insufficient validation of input data, allows attackers to execute arbitrary code.

The vulnerability of the AV1 Video Extension codec is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to execute arbitrary code...

Mitel MiVoice Connect Data Validation Vulnerability

The Service Appliance component in Mitel MiVoice Connect allows remote code execution due to incorrect data validation...

Microweber cross-site scripting vulnerability (CNVD-2022-58246)

Microweber is an online store management system that provides drag and drop functionality from the Microweber community in the United States. The system includes modules for adding products, images, and more. A cross-site scripting vulnerability exists in Microweber versions prior to 1.2.18. The...

Zoo Management System Cross-Site Scripting Vulnerability

Zoo Management System is a zoo management system. version 1.0 of Zoo Management System is vulnerable to a cross-site scripting vulnerability that stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript cod...

PortlandLabs Concrete CMS 跨站脚本漏洞

PortlandLabs Concrete CMS is a team-oriented open source content management system from PortlandLabs, Inc. A cross-site scripting vulnerability exists in PortlandLabs Concrete CMS, which originates from a lack of data validation filtering of user-supplied data and output in...

Openlibrary Cross-Site Scripting Vulnerability

openlibrary is an open, editable library catalog. A cross-site scripting vulnerability exists in openlibrary deploy-2016-07-0 version to deploy-2021-12-22 version, which stems from the lack of checksum filtering of user-supplied data and output from the administrator user login application URL. A...

habitica cross-site scripting vulnerability

habitica is an open source habit-forming program from the US-based HabitRPG. habitica versions v4.119.0 through v4.232.2 are vulnerable to a cross-site scripting vulnerability. The vulnerability stems from the program's lack of data validation filtering of user-supplied data and output. An attack...

The vulnerability of BIOS microprogramming software in Dell laptops, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of BIOS microprogramming software in Dell laptops is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of BIOS microprogramming software in Dell laptops, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of BIOS microprogramming software in Dell laptops is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Chromium: CVE-2022-2165 Insufficient data validation in URL formatting

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

74cms 跨站脚本漏洞

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology. 74cms version v3.5.1 suffers from a cross-site scripting vulnerability that stems from a lack of data validation filtering of user-supplied and output data in path/company. An attacker could exploit the...

Contec SolarView Compact Cross-Site Scripting Vulnerability (CNVD-2022-61892)

Contec SolarView Compact is an application from Contec Japan, Inc. Contec SolarView Compact v6.0 contains a cross-site scripting vulnerability that originates in the component SolarAiConf.php, which lacks a data validation filter for user-supplied data and output. An attacker could exploit this...

74cms 跨站脚本漏洞

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology Company. 74cmsSE version v3.5.1 contains a cross-site scripting vulnerability that originates from the path /company/account/safety/trade lack of data validation filtering of user-supplied data and output. An...

74cms 跨站脚本漏洞

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology Company. 74cmsSE version v3.5.1 contains a cross-site scripting vulnerability that originates from the path /company/viewbebrowsed/total missing data validation filters for user-supplied data and output. An...