EUVD-2025-41814

Malicious code in sinta-tongseng93-riris npm...

CVE-2023-41814

creationtimestamp| type| source ---|---|--- 2023-12-29 13:26:58+00:00| seen| https://t.me/ctinow/160496 2023-12-30 01:38:48+00:00| seen| https://t.me/cibsecurity/73951 2024-01-21 14:46:58+00:00| seen| https://t.me/ctinow/170844...

CVE-2023-41814

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pandora FMS on all allows Cross-Site Scripting XSS. Through an HTML payload iframe tag it is possible to carry out XSS attacks when the user receiving the messages opens their notifications. This...

CVE-2023-41814 XSS Vulnerability Messages

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pandora FMS on all allows Cross-Site Scripting XSS. Through an HTML payload iframe tag it is possible to carry out XSS attacks when the user receiving the messages opens their notifications. This...

CVE-2023-41814

Pandora FMS has a Cross-Site Scripting (XSS) flaw (CVE-2023-41814) in versions 700–774 due to improper neutralization of input during web page generation, enabling an iframe-based payload in notifications to execute in the user’s browser. This is confirmed by multiple sources including PT-Securit...

CVE-2022-41814

CVE-2022-41814 is a Cross-site Scripting (XSS) vulnerability in the BlueSpiceFoundation extension of BlueSpice. The issue allows a user with a regular account and edit permissions to inject arbitrary HTML into the history view of a wiki page. Affected component: BlueSpiceFoundation extension (Blu...

CVE-2022-41814 Potential XSS in history view

Cross-site Scripting XSS vulnerability in BlueSpiceFoundation extension of BlueSpice allows user with regular account and edit permissions to inject arbitrary HTML into the history view of a wikipage...