21 matches found
EUVD-2020-14039
Malware in sbrugna...
EUVD-2023-1667
Malicious code in bioql PyPI...
CVE-2023-33725
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
CVE-2020-21266
Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting XSS due to a slow HTTP post vulnerability...
GHSA-3862-FMR3-4F3H Broadleaf vulnerable to Cross-site Scripting
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.7-GA...
Broadleaf vulnerable to Cross-site Scripting
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.7-GA...
CVE-2023-33725
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
CVE-2023-33725
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
CVE-2023-33725
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
Cross site scripting
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
CVE-2023-33725
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
Broadleaf Commerce 跨站脚本漏洞
Broadleaf Commerce is a Java open source e-commerce website framework from the Broadleaf Commerce team. A security vulnerability exists in Broadleaf Commerce versions 5.x and 6.x, which stems from cross-site scripting XSS in email address registration...
CVE-2023-33725
CVE-2023-33725 affects Broadleaf 5.x and 6.x (including 5.2.25-GA and 6.2.6-GA). The vulnerability is a cross-site scripting (XSS) flaw exploitable via a customer signup using a crafted email address. Several sources indicate the issue is fixed in version 6.2.6.1-GA , with some references also no...
CVE-2023-33725
Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...
PT-2023-24458 · Broadleaf · Broadleaf
Name of the Vulnerable Software and Affected Versions: Broadleaf versions 5.x through 6.2.6-GA Description: The issue is related to a cross-site scripting XSS vulnerability that can be exploited via a customer signup with a crafted email address. Recommendations: For versions 5.x through 6.2.6-GA...
Broadleaf Commerce Cross-Site Scripting Vulnerability
Broadleaf Commerce is Broadleaf Commerce team of a Java open source e-commerce website framework. A cross-site scripting vulnerability exists in Broadleaf Commerce version 5.1.14-GA, which stems from a slow HTTP post vulnerability. An attacker can exploit this vulnerability to execute JavaScript...
CVE-2020-21266
Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting XSS due to a slow HTTP post vulnerability...
CVE-2020-21266
Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting XSS due to a slow HTTP post vulnerability...
Cross site scripting
Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting XSS due to a slow HTTP post vulnerability...
CVE-2020-21266
CVE-2020-21266 affects Broadleaf Commerce 5.1.14-GA and is caused by a slow HTTP POST that enables cross-site scripting (XSS) on the client. The impact is client-side script execution. A fix is referenced in Broadleaf release notes for 5.1.15-GA; upgrading to that version is the supported remedia...