CVE-2025-34258

Advantech WISE-DeviceOn Server versions prior to 5.4 contain a stored cross-site scripting XSS vulnerability in the /rmm/v1/devicemap/plan endpoint. When an authenticated user adds an area to a map entry, the name parameter is stored and later rendered in the map list without HTML sanitization. A...

CVE-2025-34258

Advantech WISE-DeviceOn Server versions prior to 5.4 contain a stored cross-site scripting XSS vulnerability in the /rmm/v1/devicemap/plan endpoint. When an authenticated user adds an area to a map entry, the name parameter is stored and later rendered in the map list without HTML sanitization. A...

EUVD-2025-201435

Advantech WISE-DeviceOn Server versions prior to 5.4 contain a stored cross-site scripting XSS vulnerability in the /rmm/v1/devicemap/plan endpoint. When an authenticated user adds an area to a map entry, the name parameter is stored and later rendered in the map list without HTML sanitization. A...

CVE-2025-34258

Advantech WISE-DeviceOn Server

PT-2025-6904 · Unknown · Code-Projects Real Estate Property Management System

Name of the Vulnerable Software and Affected Versions: code-projects Real Estate Property Management System version 1.0 Description: A critical issue has been found in the system, affecting an unknown part of the file /search.php. The manipulation of the StateName, CityName, AreaName, or CatId...

Code-Projects Real Estate Property Management System 注入漏洞

Code-Projects Real Estate Property Management System is a Code-Projects open source real estate property management system. An injection vulnerability exists in Code-Projects Real Estate Property Management System version 1.0, which stems from an incorrect manipulation of the parameters...

CVE-2007-6526

Cross-site scripting XSS vulnerability in tiki-specialchars.php in TikiWiki before 1.9.9 allows remote attackers to inject arbitrary web script or HTML via the areaname parameter...