Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/23 12:0 a.m.13 views

PT-2026-51478

Name of the Vulnerable Software and Affected Versions Frontend File Manager Plugin versions prior to 23.7 Description Insufficient sanitization and escaping of filenames submitted to the frontend file-rename endpoint allows a Stored Cross-Site Scripting XSS issue. This occurs when the filename is...

5.4CVSS5.8AI score0.00133EPSS
Exploits0References6
OSV
OSV
added 2017/10/24 7:29 p.m.11 views

CVE-2017-15867

Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 datefrom, 2 dateto, 3 userid, 4 username, 5 countryname, 6 browser, 7 operatingsystem, or 8 ipaddress parameter to...

6.1CVSS6.2AI score
Exploits0References2
NVD
NVD
added 2017/09/11 5:29 p.m.13 views

CVE-2015-7879

Cross-site scripting XSS vulnerability in the Stickynote module 7.x before 7.x-1.3 for Drupal allows remote authenticated users with permission to create or edit a stickynote to inject arbitrary web script or HTML via note text on the admin listing page...

5.4CVSS5.1AI score0.00887EPSS
Exploits0References4
Prion
Prion
added 2017/09/11 5:29 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Stickynote module 7.x before 7.x-1.3 for Drupal allows remote authenticated users with permission to create or edit a stickynote to inject arbitrary web script or HTML via note text on the admin listing page...

3.5CVSS5.7AI score0.00887EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder