CVE-2025-58857

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KaizenCoders Table of content content-table allows Stored XSS.This issue affects Table of content: from n/a through = 1.5.3.1...

CVE-2025-58857

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KaizenCoders Table of content content-table allows Stored XSS.This issue affects Table of content: from n/a through = 1.5.3.1...

CVE-2025-58857 WordPress Table of content Plugin <= 1.5.3.1 - Cross Site Request Forgery (CSRF) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KaizenCoders Table of content content-table allows Stored XSS.This issue affects Table of content: from n/a through = 1.5.3.1...

CVE-2025-58857 WordPress Table of content Plugin <= 1.5.3.1 - Cross Site Request Forgery (CSRF) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KaizenCoders Table of content content-table allows Stored XSS.This issue affects Table of content: from n/a through = 1.5.3.1...

WordPress Table of content Plugin <= 1.5.3.1 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Table of content versions = 1.5.3.1...

CVE-2023-48171

An issue in OWASP DefectDojo before v.1.5.3.1 allows a remote attacker to escalate privileges via the user permissions component...

OWASP DefectDojo 安全漏洞

OWASP DefectDojo is a powerful vulnerability management platform and DevSecOps platform from the US-based OWASP Foundation. A security vulnerability exists in OWASP DefectDojo versions prior to v.1.5.3.1, which stems from a remote attacker being able to elevate privileges via the user rights...

ATutor <= 1.5.3.1 (links) Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo ATutor = 1.5.3.1 'links' blind SQL injection / admin credentials disclosure\n; echo by rgod [email protected]\n; echo site: http://retrogod.altervista.org\n; echo dork, version specific: \Web site engine's code is...

OpenCart CMS Cross Site Scripting

| |/ | | / | | / \ | | | | / \ | | | |/ | | / | | | | ' \ / / / / / / / / | / / \ \ | | | | | |/ / | | | \ \ \ | | \ \ \ | / / /||/|| |// \ , /\ , /|// || / || || / || || -------------------------------------------------------------------...

CVE-2006-3996

SQL injection vulnerability in links/index.php in ATutor 1.5.3.1 and earlier allows remote authenticated users to execute arbitrary SQL commands via the 1 desc or 2 asc parameters...

PT-2006-4529 · Atutor · Atutor

Name of the Vulnerable Software and Affected Versions: ATutor version 1.5.3 Description: A SQL injection issue in index.php allows remote attackers to execute arbitrary SQL commands via the fid parameter. The vendor has disputed this issue, stating it is not possible, but the source code suggests...