18 matches found
CVE-2026-61492
In JetBrains YouTrack before 2026.2.17394 stored XSS via article titles in digest emails was possible...
EUVD-2026-42915
In JetBrains YouTrack before 2026.2.17394 stored XSS via article titles in digest emails was possible...
CVE-2026-61492
The provided connected documents identify a concrete vulnerability in JetBrains YouTrack: stored XSS via article titles in digest emails, affecting versions prior to 2026.2.17394. The exact root cause is not detailed beyond this description, and there are no explicit exploit details or remediatio...
WordPress plugin Total 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
BIT-JOOMLA-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs
Lack of output escaping for article titles leads to XSS vectors in various locations...
CVE-2026-21632
Lack of output escaping for article titles leads to XSS vectors in various locations...
EUVD-2026-17859
Lack of output escaping for article titles leads to XSS vectors in various locations...
CVE-2026-21632
Lack of output escaping for article titles leads to XSS vectors in various locations...
CVE-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs
Lack of output escaping for article titles leads to XSS vectors in various locations...
CVE-2026-21632
Lack of output escaping for article titles leads to XSS vectors in various locations...
CVE-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs
Lack of output escaping for article titles leads to XSS vectors in various locations...
CVE-2026-21632
Summary (CVE-2026-21632) : Joomla! Core suffers XSS due to lack of output escaping for article titles, enabling injected scripts in various article-title outputs. Connected sources confirm this affects Joomla core output paths and document titles, with multiple vendor references and CVSS-based as...
Joomla! CMS 跨站脚本漏洞
Joomla! CMS is a content management system developed under the open source Joomla! framework. Joomla! CMS has a cross-site scripting vulnerability, which stems from the lack of output escaping in article titles, potentially leading to cross-site scripting attacks...
PT-2026-29504
Name of the Vulnerable Software and Affected Versions versions affected versions not specified Description A lack of output escaping for article titles creates cross-site scripting XSS vectors in multiple areas. Recommendations At the moment, there is no information about a newer version that...
CVE-2025-28101
CVE-2025-28101 affects flaskBlog v2.6.1, where the /post/{postTitle} endpoint allows arbitrary file deletion by crafting a POST request, enabling deletion of article titles created by other users. Documented details confirm the vulnerable component and impact (I/A low, C=none) with CVSSv3.1 score...
CVE-2022-22123
In Halo, versions v1.0.0 to v1.4.17 latest are vulnerable to Stored Cross-Site Scripting XSS in the article title. An authenticated attacker can inject arbitrary javascript code that will execute on a victim’s server...
Stored Cross-Site Vulnerability in ASPCMS
ASPCMS is a set of open source CMS website building system. ASPCMS storage type cross-site vulnerability , due to aspcms background to add article titles at the special character filtering is not strict , attackers can use the vulnerability to launch xss storage type cross-site scripting attacks...
AJ Article 3.0 - Cross-Site Scripting
AJ Article 3.0 - Cross-Site Scripting 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 vendor URL :http://www.ajsquare.com/ Google Dork :Powered By: AJ Square Inc Author : Sid3^effects aKa HaRi special thanks to : r007...