CVE-2024-43950

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Nextbricks Brickscore allows Stored XSS.This issue affects Brickscore: from n/a through 1.4.2.5...

PT-2024-30812 · Nextbricks · Nextbricks Brickscore

Name of the Vulnerable Software and Affected Versions: Nextbricks Brickscore versions 1.4.2.5 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, where an attacker can...

WordPress plugin Brickscore 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

WordPress Brickscore plugin <= 1.4.2.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Brickscore versions = 1.4.2.5...

ASUS Control Center SQL注入漏洞

ASUS Control Center is a new centralized IT management software from ASUS China. The software can monitor and control ASUS servers, workstations. A SQL injection vulnerability exists in ASUS Control Center v1.4.2.5. An attacker can exploit this vulnerability to inject SQL commands into specific A...