22 matches found
EUVD-2024-49784
Malicious code in bioql PyPI...
EUVD-2024-33129
Malicious code in bioql PyPI...
EUVD-2024-49783
Malicious code in bioql PyPI...
CVE-2024-10454
Clickjacking vulnerability in Clibo Manager v1.1.9.12 in the '/public/login' directory, a login panel. This vulnerability occurs due to the absence of an X-Frame-Options server-side header. An attacker could overlay a transparent iframe to perform click hijacking on victims...
CVE-2024-10454 Clickjacking vulnerability in Clibo Manager
Clickjacking vulnerability in Clibo Manager v1.1.9.12 in the '/public/login' directory, a login panel. This vulnerability occurs due to the absence of an X-Frame-Options server-side header. An attacker could overlay a transparent iframe to perform click hijacking on victims...
CVE-2024-10454 Clickjacking vulnerability in Clibo Manager
Clickjacking vulnerability in Clibo Manager v1.1.9.12 in the '/public/login' directory, a login panel. This vulnerability occurs due to the absence of an X-Frame-Options server-side header. An attacker could overlay a transparent iframe to perform click hijacking on victims...
CVE-2024-10454
The vulnerability is a clickjacking issue in Clibo Manager 1.1.9.12, exposed via the /public/login page and caused by a missing X-Frame-Options header. This could allow an attacker to overlay a transparent iframe and hijack user clicks. The PT-security entry confirms the affected version and dire...
PT-2024-16294 · Unknown · Clibo Manager
Name of the Vulnerable Software and Affected Versions: Clibo Manager version 1.1.9.12 Description: A clickjacking issue occurs in the '/public/login' directory, a login panel, due to the absence of an X-Frame-Options server-side header. An attacker could overlay a transparent iframe to perform...
Clibo Manager 安全漏洞
Clibo Manager is a management platform from Clibo Manager, Inc. providing sports clubs with the ability to manage subscriptions and ticket sales, as well as direct contact with subscribers, events, sales statistics, and more. A security vulnerability exists in Clibo Manager version 1.9.12, which...
CVE-2024-9199
Rate limit vulnerability in Clibo Manager v1.1.9.2 that could allow an attacker to send a large number of emails to the victim in a short time, affecting availability and leading to a denial of service DoS...
CVE-2024-9199
Rate limit vulnerability in Clibo Manager v1.1.9.2 that could allow an attacker to send a large number of emails to the victim in a short time, affecting availability and leading to a denial of service DoS...
CVE-2024-9198
Vulnerability in Clibo Manager v1.1.9.1 that could allow an attacker to execute an stored Cross-Site Scripting stored XSS by uploading a malicious .svg image in the section: Profile Profile picture...
CVE-2024-9198
Vulnerability in Clibo Manager v1.1.9.1 that could allow an attacker to execute an stored Cross-Site Scripting stored XSS by uploading a malicious .svg image in the section: Profile Profile picture...
CVE-2024-9199 Rate limit vulnerability in Clibo Manager
Rate limit vulnerability in Clibo Manager v1.1.9.2 that could allow an attacker to send a large number of emails to the victim in a short time, affecting availability and leading to a denial of service DoS...
CVE-2024-9199 Rate limit vulnerability in Clibo Manager
Rate limit vulnerability in Clibo Manager v1.1.9.2 that could allow an attacker to send a large number of emails to the victim in a short time, affecting availability and leading to a denial of service DoS...
CVE-2024-9199
CVE-2024-9199 affects Clibo Manager v1.1.9.2. The issue is a rate-limit vulnerability in the email-sending flow, which could allow an attacker to flood recipients with emails in a short period and cause a DoS by impacting availability. Public sources consistently reference the vulnerability in Cl...
CVE-2024-9198
CVE-2024-9198 : Stored Cross-Site Scripting in Clibo Manager v1.1.9.1 via uploading a malicious SVG in Profile > Profile picture. Affected component: profile picture upload handling in Clibo Manager. Evidence from multiple sources (NVD/NVD-derived, CVE records, CNNVD) confirms a stored XSS vul...
CVE-2024-9198 Stored Cross-Site Scripting vulnerability in Clibo Manager
Vulnerability in Clibo Manager v1.1.9.1 that could allow an attacker to execute an stored Cross-Site Scripting stored XSS by uploading a malicious .svg image in the section: Profile Profile picture...
CVE-2024-9198 Stored Cross-Site Scripting vulnerability in Clibo Manager
Vulnerability in Clibo Manager v1.1.9.1 that could allow an attacker to execute an stored Cross-Site Scripting stored XSS by uploading a malicious .svg image in the section: Profile Profile picture...
Clibo Manager 跨站脚本漏洞
Clibo Manager is a management platform from Clibo Manager, Inc. providing sports clubs with the ability to manage subscriptions and ticket sales, as well as direct contact with subscribers, events, sales statistics, and more. A cross-site scripting vulnerability exists in Clibo Manager version...