CVE-2026-36236

SourceCodester Engineers Online Portal v1.0 is vulnerable to SQL Injection in updatepassword.php via the newpassword parameter...

CVE-2025-36236

creationtimestamp| type| source ---|---|--- 2025-11-13 22:22:12+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115544721445633757 2025-11-13 22:31:01+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5k7qxvywrw2 2025-11-13 22:56:57+00:00| seen|...

CVE-2024-36236 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue requires user...

CVE-2024-36236 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue requires user...

CVE-2023-36236

creationtimestamp| type| source ---|---|--- 2024-01-20 21:16:26+00:00| seen| https://t.me/ctinow/170726 2024-02-10 16:11:42+00:00| seen| https://t.me/ctinow/182601 2025-06-17 14:39:57+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18592...

CVE-2023-36236

Cross Site Scripting vulnerability in webkil Bagisto v.1.5.0 and before allows an attacker to execute arbitrary code via a crafted SVG file uplad...

CVE-2023-36236

Cross Site Scripting vulnerability in webkil Bagisto v.1.5.0 and before allows an attacker to execute arbitrary code via a crafted SVG file uplad...

CVE-2023-36236

CVE-2023-36236 affects Webkul Bagisto v1.5.0 and earlier. The vulnerability is Cross-Site Scripting (XSS) caused by improper validation of uploaded SVG files, allowing an attacker to execute arbitrary code via a crafted file upload. Impact is stated as arbitrary code execution under the described...

Atlassian Jira < 8.5.11 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.11, 8.6.x 8.13.3 or 8.14.x 8.15.0. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability in the...

CVE-2020-36236

creationtimestamp| type| source ---|---|--- 2021-02-15 02:45:57+00:00| seen| https://t.me/cibsecurity/23582...

CVE-2020-36236

CVE-2020-36236 affects Atlassian Jira Server/Data Center. The connected documents confirm a Cross-Site Scripting (XSS) vulnerability in the ViewWorkflowSchemes.jspa and ListWorkflows.jspa endpoints. Affected versions are before 8.5.11, from 8.6.0 before 8.13.3, and from 8.14.0 before 8.15.0. The ...

XSS via ViewWorkflowSchemes.jspa, ListWorkflows.jspa - CVE-2020-36236

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability in the ViewWorkflowSchemes.jspa and ListWorkflows.jspa endpoints. The affected versions are before version 8.5.11, from version...

XSS via ViewWorkflowSchemes.jspa, ListWorkflows.jspa - CVE-2020-36236

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability in the ViewWorkflowSchemes.jspa and ListWorkflows.jspa endpoints. The affected versions are before version 8.5.11, from version...