Gnuboard 5 - Cross-Site Scripting

Gnuboard 5 contains a cross-site scripting vulnerability via the $GET'LGDOID' parameter. id: CVE-2021-3831 info: name: Gnuboard 5 - Cross-Site Scripting author: arafatansari severity: medium description: | Gnuboard 5 contains a cross-site scripting vulnerability via the $GET'LGDOID' parameter...

CVE-2026-3831

creationtimestamp| type| source ---|---|--- 2026-04-01 20:45:05+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mihkodgmvj2e...

CVE-2026-3831

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the entriesshortcode function in all versions up to, and including, 1.4.9. This makes it possible for authenticated attackers, with...

RHSA-2026:3831 Red Hat Security Advisory: grafana security update

Bulletin has no description...

EUVD-2026-3831

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through = 4.2.8.0...

MiracleLinux 3 : kernel-2.6.18-53.17AXS3 (AXSA:2009-02:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-02:01 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

CVE-2021-3831

creationtimestamp| type| source ---|---|--- 2025-10-16 21:02:31+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m3dnrkkbmw2n...

GO-2025-3831 Memos has Cross-Site Scripting (XSS) Vulnerability in Image URLs in github.com/usememos/memos

Memos has Cross-Site Scripting XSS Vulnerability in Image URLs in github.com/usememos/memos...

CVE-2023-3831

A vulnerability was found in Bug Finder Finounce 1.0 and classified as problematic. This issue affects some unknown processing of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. The attack may be initiated...

CVE-2022-3831

The reCAPTCHA WordPress plugin through 1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2021-3831

gnuboard5 is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

CVE-2020-3831

A race condition was addressed with improved locking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. An application may be able to execute arbitrary code with kernel privileges...

CVE-2024-3831

creationtimestamp| type| source ---|---|--- 2025-01-28 04:09:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3227...

Photon OS 2.0: Elasticsearch PHSA-2018-2.0-0116

An update of the elasticsearch package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0116. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2024-3831

The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Heading widget in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

CVE-2024-3831 Enter Addons – Ultimate Template Builder for Elementor <= 2.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Heading widget

The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Heading widget in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

CVE-2024-3831

CVE-2024-3831 (Enter Addons – Ultimate Template Builder for Elementor) : The WordPress plugin is vulnerable to a Stored Cross-Site Scripting (XSS) in the Heading widget across all versions up to 2.1.5 due to insufficient input sanitization and output escaping. Exploitation requires authentication...

WordPress Enter Addons Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS)

Software Enter Addons Type Plugin Vulnerable versions = 2.1.5 Fixed in 2.1.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3831 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ceb5b7d0d75e Credits Sebastião Gavião Sebastgav...

CVE-2023-3831 Bug Finder Finounce Ticket create cross site scripting

A vulnerability was found in Bug Finder Finounce 1.0 and classified as problematic. This issue affects some unknown processing of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. The attack may be initiated...

CVE-2023-3831

CVE-2023-3831 affects Bug Finder Finounce 1.0. The flaw resides in the Ticket Handler component, specifically in processing the file path /user/ticket/create, where the message argument can be manipulated to trigger Cross-Site Scripting (XSS). The vulnerability permits remote initiation and is de...