CVE-2022-34328

PMB 7.3.10 allows reflected XSS via the id parameter in an lvl=authorsee request to index.php...

WordPress plugin Zotpress 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...

PT-2024-32678 · Zotpress · Zotpress

Name of the Vulnerable Software and Affected Versions: Zotpress versions through 7.3.10 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, enabling malicious scripts to be executed...

WordPress Zotpress plugin <= 7.3.10 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Zotpress versions = 7.3.10...

WordPress Zotpress Plugin <= 7.3.10 is vulnerable to Cross Site Scripting (XSS)

Software Zotpress Type Plugin Vulnerable versions = 7.3.10 Fixed in 7.3.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47621 Patch priority Low CVSS severity Low 6.5 Developer Katie Seaborn PSID 40efcdae39f8 Credits Trương Hữu Phúc truonghuuphuc Required...

Microsoft PowerShell Information Disclosure Vulnerability (Dec 2023) - Windows

This host is missing an important security update for PowerShell Core according to Microsoft security advisory CVE-2023-36013. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Microsoft PowerShell Information Disclosure Vulnerability (Dec 2023) - Linux

This host is missing an important security update for PowerShell Core according to Microsoft security advisory CVE-2023-36013. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Important: Red Hat Security Advisory: Red Hat Data Grid 7.3.10 security update

An update for Red Hat Data Grid is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

PT-2022-26005 · WordPress · Quiz/Survey Master

Name of the Vulnerable Software and Affected Versions: Quiz And Survey Master plugin versions 7.3.10 and earlier Description: A bypass vulnerability exists in the Quiz And Survey Master plugin for WordPress. Recommendations: For versions 7.3.10 and earlier, update to a version later than 7.3.10 t...

WordPress plugin Quiz And Survey Master 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2022-26643 · WordPress · Quiz/Survey Master

Name of the Vulnerable Software and Affected Versions: Quiz And Survey Master plugin versions prior to 7.3.10 Description: A Sensitive Information Disclosure issue has been discovered in the Quiz And Survey Master plugin for WordPress. Recommendations: For versions prior to 7.3.10, update to...

Cross site scripting

A Cross-site scripting XSS vulnerability in the Document and Media module - file upload functionality in Liferay Digital Experience Platform 7.3.10 SP3 allows remote attackers to inject arbitrary JS script or HTML into the description field of uploaded svg file...

CVE-2022-38901

Summary (CVE-2022-38901, related entries): Liferay Digital Experience Platform 7.3.10 SP3 is affected in the Document and Media module file upload path. The vulnerability is a Cross-site Scripting (XSS) flaw in the description field of uploaded SVG files, enabling remote attackers to inject arbit...

Liferay DXP 跨站脚本漏洞

Liferay DXP is a digital experience collaboration platform from Liferay, Inc. A security vulnerability exists in Liferay DXP version 7.3.10 SP3, Liferay Portal versions 7.3.0 through 7.4.0, which originates from a vulnerability that could allow a remote attacker to inject arbitrary JS script or...

CVE-2022-38902

A Cross-site scripting XSS vulnerability in the Blog module - add new topic functionality in Liferay Digital Experience Platform 7.3.10 SP3 allows remote attackers to inject arbitrary JS script or HTML into the name field of newly created topic...

PMB Cross-Site Scripting Vulnerability

PMB is a 100% free reference tool for document management from the PMB Services team. A cross-site scripting vulnerability exists in PMB version 7.3.10, which stems from missing filtering and escaping of the id parameter in index.php. An attacker could exploit this vulnerability to execute...

CVE-2022-34328

PMB 7.3.10 allows reflected XSS via the id parameter in an lvl=authorsee request to index.php...

Cross site scripting

PMB 7.3.10 allows reflected XSS via the id parameter in an lvl=authorsee request to index.php...

CVE-2022-34328

PMB 7.3.10 allows reflected XSS via the id parameter in an lvl=authorsee request to index.php...

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.3.10 security update on RHEL 8 (Moderate) (RHSA-2021:5151)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:5151 advisory. This release of Red Hat JBoss Enterprise Application Platform 7.3.10 serves as a replacement for Red Hat JBoss Enterprise Application Platfo...