CVE-2022-38639

A cross-site scripting XSS vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field...

CVE-2020-22612

Installer RCE on settings file write in MyBB before 1.8.22...

CVE-2019-15643

The ultimate-faqs plugin before 1.8.22 for WordPress has XSS...

gRPC Security Vulnerabilities

gRPC is a modern, open-source, high-performance remote procedure call RPC framework from gRPC Open Source. A security vulnerability exists in gRPC versions prior to 1.10.9, 1.9.15, and 1.8.22, which stems from the ability to allocate memory far beyond the configuration limit for incoming messages...

WordPress Photo Gallery by 10Web Plugin <= 1.8.21 is vulnerable to Cross Site Scripting (XSS)

Software Photo Gallery by 10Web Type Plugin Vulnerable versions = 1.8.21 Fixed in 1.8.22 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2296 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID db9d53f79206 Credits Jobert Krohnen...

CVE-2020-22612

Installer RCE on settings file write in MyBB before 1.8.22...

PT-2023-11624 · Mybb · Mybb

Name of the Vulnerable Software and Affected Versions: MyBB versions prior to 1.8.22 Description: The issue concerns an Installer Remote Code Execution RCE vulnerability related to settings file write in MyBB. Recommendations: For MyBB versions prior to 1.8.22, update to version 1.8.22 or later t...

CVE-2022-38639

A cross-site scripting XSS vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field...

CVE-2022-38639

A cross-site scripting XSS vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field...

PT-2022-24496 · Unknown · Markdown-Nice

Name of the Vulnerable Software and Affected Versions: Markdown-Nice version 1.8.22 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field. Recommendations: For Markdown-Nice version...

Markdown-Nice 跨站脚本漏洞

Markdown-Nice is an open source Markdown editor that supports theme design by inkdrop software mdnice. A security vulnerability exists in Markdown-Nice v1.8.22 that stems from the presence of cross-site scripting XSS, which allows an attacker to execute arbitrary web script or HTML via a speciall...

SUSE: Security Advisory (SUSE-SU-2016:2565-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-2235-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MyBB Open Redirect Vulnerability

MyBB MyBulletinBoard is a free and Web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A security vulnerability exists in MyBB versions prior to 1.8.22. The vulnerability can be exploited t...

CVE-2019-20225

MyBB before 1.8.22 allows an open redirect on login...

CVE-2019-20225

CVE-2019-20225 affects MyBB up to version 1.8.21; the vulnerability is an open redirect on login, allowing an attacker to redirect users to a site of their choosing via a crafted URL. The issue is documented across multiple sources (NVD, Red Hat, CNVD, OpenVAS, Symantec) with consistent descripti...

CVE-2019-15643

The ultimate-faqs plugin before 1.8.22 for WordPress has XSS...

openSUSE Security Update : dbus-1 (openSUSE-2016-1269)

This update for dbus-1 to version 1.8.22 fixes several issues. This security issue was fixed : - boo1003898: Do not treat ActivationFailure message received from root-owned systemd name as a format string. These non-security issues were fixed : - boo978477: Correctly reset timeouts for pending fi...

openSUSE Security Update : dbus-1 (openSUSE-2016-1222)

This update for dbus-1 to version 1.8.22 fixes one security issue and bugs. The following security issue was fixed : - bsc1003898: Do not treat ActivationFailure message received from root-owned systemd name as a format string. The following upstream changes are included : - Change the default...

openSUSE Security Update : dbus-1 (openSUSE-2016-1206)

This update for dbus-1 to version 1.8.22 fixes several issues. This security issue was fixed : - boo1003898: Do not treat ActivationFailure message received from root-owned systemd name as a format string. These non-security issues were fixed : - boo978477: Correctly reset timeouts for pending fi...