14 matches found
EUVD-2021-33943
Malicious code in bioql PyPI...
CVE-2024-33943
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HappyKite Ultimate Under Construction allows Stored XSS.This issue affects Ultimate Under Construction: from n/a through 1.9.3...
CVE-2023-33943
Cross-site scripting XSS vulnerability in the Account module in Liferay Portal 7.4.3.21 through 7.4.3.62, and Liferay DXP 7.4 update 21 through 62 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user's 1 First Name, 2 Middle Name, 3 Last Name, ...
CVE-2024-33943
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HappyKite Ultimate Under Construction allows Stored XSS.This issue affects Ultimate Under Construction: from n/a through 1.9.3...
CVE-2024-33943 WordPress Ultimate Under Construction plugin <= 1.9.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HappyKite Ultimate Under Construction allows Stored XSS.This issue affects Ultimate Under Construction: from n/a through 1.9.3...
CVE-2024-33943
CVE-2024-33943 is an XSS vulnerability in the Ultimate Under Construction plugin for WordPress, allowing stored cross-site scripting via input during web page generation. The issue affects Ultimate Under Construction versions from n/a up to and including 1.9.3. The connected Red Hat advisory conf...
CVE-2024-33943 WordPress Ultimate Under Construction plugin <= 1.9.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HappyKite Ultimate Under Construction allows Stored XSS.This issue affects Ultimate Under Construction: from n/a through 1.9.3...
WordPress Ultimate Under Construction Plugin <= 1.9.3 is vulnerable to Cross Site Scripting (XSS)
Software Ultimate Under Construction Type Plugin Vulnerable versions = 1.9.3 Fixed in 1.9.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-33943 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3fb7b9382a8d Credits Cronus Required privilege...
Liferay Portal 7.4.3.21 <= 7.4.3.62 XSS
Cross-site scripting XSS vulnerability in the Account module in Liferay Portal allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user's 1 First Name, 2 Middle Name, 3 Last Name, or 4 Job Title text field. Note that Nessus has not tested for this...
CVE-2023-33943
Cross-site scripting XSS vulnerability in the Account module in Liferay Portal 7.4.3.21 through 7.4.3.62, and Liferay DXP 7.4 update 21 through 62 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user's 1 First Name, 2 Middle Name, 3 Last Name, ...
CVE-2023-33943
CVE-2023-33943 is an XSS vulnerability in the Account module of Liferay Portal (7.4.3.21–7.4.3.62) and Liferay DXP 7.4 update 21–62. The flaw allows remote attackers to inject arbitrary script/HTML via crafted input in user fields: First Name, Middle Name, Last Name, or Job Title. The public desc...
CVE-2022-33943
creationtimestamp| type| source ---|---|--- 2022-07-27 20:36:27+00:00| seen| https://t.me/cibsecurity/47118...
CVE-2022-33943
CVE-2022-33943: Authenticated Cross-Site Scripting (XSS) vulnerability in the WordPress BxSlider WP plugin, affecting versions
CVE-2022-33943 WordPress BxSlider WP plugin <= 2.0.0 - Authenticated Cross-Site Scripting (XSS) vulnerability
Authenticated contributor or higher user role Cross-Site Scripting XSS vulnerability in Nico Amarilla's BxSlider WP plugin = 2.0.0 at WordPress...