SourceCodester College Website Management System SQL注入漏洞

SourceCodester College Website Management System is an application of SourceCodester, Inc. SourceCodester College Website Management System version 1.0 is vulnerable to SQL injection, which originates from the lack of user-supplied data and output data in the id parameter of...

Orchard Coret Cross-Site Scripting Vulnerability

Net Core, an open source modular and multi-tenant application framework built using Asp.Net Core, and a content management system Cms built on top of the framework.A cross-site scripting vulnerability exists in Orchard Core, which stems from the lack of proper validation of client-side data in th...

Pimcore Cross-Site Scripting Vulnerability (CNVD-2022-22704)

Pimcore is an open source Web content management platform for creating and managing Web applications from the Austrian company Pimcore. The platform integrates Web content management, e-commerce framework and product information management applications. cross-site scripting vulnerabilities exist ...

Pimcore Cross-Site Scripting Vulnerability (CNVD-2022-22703)

Pimcore is an open source Web content management platform for creating and managing Web applications from the Austrian company Pimcore. The platform integrates Web content management, e-commerce framework and product information management applications. cross-site scripting vulnerability exists i...

Car Driving School Management System Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in Car Driving School Management System, a driving school management system, which stems from the fact that the product's User Enrollment Form does not effectively filter user input data and can be exploited by attackers to The vulnerability causes...

WordPress Dynamic Widgets plugin cross-site scripting vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress Dynamic Widgets plugin prior to version 1.5.16,...

Librenms Cross-Site Scripting Vulnerability (CNVD-2022-15529)

Librenms is a PHP and MySQL based open source network monitoring system from the Librenms community. The system features custom alerts, auto-discovery of network environments and automatic updates.Librenms suffers from a cross-site scripting vulnerability that stems from the lack of proper...

Microweber Cross-Site Scripting Vulnerability (CNVD-2022-15527)

Microweber is an online store management system from the Microweber community in the United States that provides drag-and-drop functionality. The system includes modules for adding products, images, etc. A cross-site scripting vulnerability exists in GitHub, which stems from the lack of proper...

Checkmk Cross-Site Scripting Vulnerability (CNVD-2022-17021)

Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk versions 2.0.0p19 and earlier and 1.6.0p27 and earlier, which stems from the lack of proper validation of client-side data by the web application. An attacker could exploit this vulnerability to execute client-side code...

Tricentis qTest Cross-Site Scripting Vulnerability

Tricentis qTest is used by Tricentis to centrally manage and understand software testing activities from conception to production. qTest has a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data by the WEB application, which can be exploited by...

FUEL CMS Cross-Site Scripting Vulnerability (CNVD-2022-71119)

FUEL CMS is a content management system CMS based on the Codelgniter framework. version 1.5.1 of FUEL CMS suffers from a cross-site scripting vulnerability, which stems from the lack of proper validation of client-side data by the WEB application. An attacker could exploit the vulnerability to...

Checkmk Cross-Site Scripting Vulnerability (CNVD-2022-21231)

Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk, which stems from Checkmk version = 2.0.0p19. When creating or editing user properties, Help Text is affected by HTML injection, which can be triggered when editing a user. An attacker could use this vulnerability to...

WordPress 跨站脚本漏洞

WordPress is the WordPress Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. wordpress Ad Inserterr has a cross-site scripting vulnerability, which stems from the product not outputting the...

livehelperchat Cross-Site Scripting Vulnerability (CNVD-2022-13080)

livehelperchat is available through Live Helper Chat, which provides free live support on the website. livehelperchat 3.93v previously had a cross-site scripting vulnerability that stemmed from the lack of proper validation of client-side data by the WEB application, which could be exploited by a...

Pybbs Cross-Site Scripting Vulnerability

Pybbs is a community forum for more practical Java development. A cross-site scripting vulnerability exists in Pybbs, which stems from the product's search box not effectively handling special characters in user input data. An attacker can exploit this vulnerability to execute client-side code...

K-Box Cross-Site Scripting Vulnerability

K-Box is a web-based application used to manage document, image, video and geographic data. A cross-site scripting vulnerability exists in K-Box, which stems from the fact that the editors of the product's user document summaries and markdown file previews do not securely handle special character...

microweber cross-site scripting vulnerability (CNVD-2022-12763)

Microweber is an online store management system from the Microweber community in the United States that provides drag-and-drop functionality. The system includes modules for adding products, images, etc. A cross-site scripting vulnerability exists in microweber, which stems from the product's...

Pimcore Cross-Site Scripting Vulnerability (CNVD-2022-22706)

Pimcore is an open source Web content management platform for creating and managing Web applications from Pimcore Austria. The platform integrates Web content management, e-commerce frameworks and product information management applications.Pimcore has a cross-site scripting vulnerability that...

Pybbs 跨站脚本漏洞

Pybbs is a community forum for more practical Java development. A cross-site scripting vulnerability exists in Pybbs, which stems from the product's search box not effectively handling special characters in user input data. An attacker can exploit this vulnerability to execute client-side code...

MiniCMS Cross-Site Scripting Vulnerability (CNVD-2022-11519)

MiniCMS is a content management system CMS designed for personal websites. miniCMS has a security vulnerability that stems from the lack of proper validation of client-side data in the WEB application, which can be exploited by attackers to execute client-side code...