63 matches found
CVE-2020-7990
Adive Framework 2.0.8 has admin/user/add userName XSS...
CVE-2020-7989
Adive Framework 2.0.8 has admin/user/add userUsername XSS...
CVE-2020-7991
Adive Framework 2.0.8 has admin/config CSRF to change the Administrator password...
EUVD-2020-28907
Malware in sbrugna...
EUVD-2020-28905
Malware in sbrugna...
EUVD-2020-28906
Malware in sbrugna...
EUVD-2019-6076
Malware in sbrugna...
EUVD-2024-43977
Malicious code in bioql PyPI...
EUVD-2024-43978
Malicious code in bioql PyPI...
CVE-2019-14987
Adive Framework through 2.0.7 is affected by XSS in the Create New Table and Create New Navigation Link functions...
CVE-2024-4337
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/nav/add, in multiple parameters. This vulnerability allows an attacker to retrieve the session details of an authenticated user...
CVE-2024-4337
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/nav/add, in multiple parameters. This vulnerability allows an attacker to retrieve the session details of an authenticated user...
CVE-2024-4336
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/tables/add, in multiple parameters. An attacker could retrieve the session details of an authenticated user...
CVE-2024-4336 Múltiple vulnerabilities on Adive Framework
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/tables/add, in multiple parameters. An attacker could retrieve the session details of an authenticated user...
CVE-2024-4336
CVE-2024-4336 affects Adive Framework 2.0.8. The vulnerability is a persistent XSS due to insufficient encoding of user-controlled inputs, exploitable via the /adive/admin/tables/add endpoint across multiple parameters. The available documents indicate an attacker could retrieve the session detai...
CVE-2024-4336 Múltiple vulnerabilities on Adive Framework
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/tables/add, in multiple parameters. An attacker could retrieve the session details of an authenticated user...
CVE-2024-4337 Múltiple vulnerabilities on Adive Framework
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/nav/add, in multiple parameters. This vulnerability allows an attacker to retrieve the session details of an authenticated user...
CVE-2024-4337
CVE-2024-4337 affects Adive Framework 2.0.8. The root cause is insufficient encoding of user-controlled inputs, causing a persistent XSS vulnerability via the /adive/admin/nav/add endpoint across multiple parameters. This can enable an attacker to retrieve authenticated user session details. Publ...
CVE-2024-4337 Múltiple vulnerabilities on Adive Framework
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/nav/add, in multiple parameters. This vulnerability allows an attacker to retrieve the session details of an authenticated user...
Adive Framework 跨站脚本漏洞
Adive Framework is a PHP-based MySQL database management framework. A cross-site scripting vulnerability exists in Adive Framework version 2.0.8, which stems from a failure to adequately encode user-controlled input, leading to a cross-site scripting XSS vulnerability that allows an attacker to...