scratch-svg-renderer cross-site scripting vulnerability

scratch-svg-renderer is a code library used by the Scratch team to convert SVG to DOM elements. scratch-Svg-Renderer suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in WEB applications, which can be exploited to execute client-si...

Practo Technologies Insta Hms跨站脚本漏洞

Practo Technologies Insta Hms is a hospital information system from Practo Technologies, India. Practo Technologies Insta HMS has a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in the WEB application, which can be exploited by attackers to...

Bludit 跨站脚本漏洞

A cross-site scripting vulnerability exists in Bludit, an open source lightweight blog content management system CMS, which stems from a tag section in the product's login panel that does not validate input data. An attacker could execute client-side code through this vulnerability...

DayByDay CRM Cross-Site Scripting Vulnerability (CNVD-2022-68549)

DayByDay CRM is an open source CRM Customer Relationship Management software, based on Laravel, that helps users keep track of clients, tasks, meetings and more. A cross-site scripting vulnerability exists in DayByDay CRM. The vulnerability stems from the title field of a new task in the product...

Dmp Roadmap Cross-Site Scripting Vulnerability

Dmp Roadmap is a data management planning tool. a cross-site scripting vulnerability exists in Dmp Roadmap, which stems from the DMP roadmap prior to 3.0.4 and allows XSS. an attacker could exploit this vulnerability to execute client-side code...

Daybyday CRM 跨站脚本漏洞

DayByDay CRM is an open source CRM Customer Relationship Management software, based on Laravel, that helps users keep track of clients, tasks, meetings and more. A cross-site scripting vulnerability exists in DayByDay CRM. The vulnerability stems from the title field of a new task in the product...

livehelperchat cross-site scripting vulnerability (CNVD-2022-01685)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat that stems from the vulnerability of livehelperchat to input errors when generating web pages. An attacker can exploi...

livehelperchat cross-site scripting vulnerability (CNVD-2022-01684)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat that stems from the vulnerability of livehelperchat to input errors when generating web pages. An attacker can exploi...

livehelperchat 跨站脚本漏洞

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat that stems from the vulnerability of livehelperchat to input errors when generating web pages. An attacker can exploi...

livehelperchat 跨站脚本漏洞

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat that stems from the vulnerability of livehelperchat to input errors when generating web pages. An attacker can exploi...

Qibosoft Cross-Site Scripting Vulnerability

Qibosoft qibosoft is a content management system CMS from Qibosoft, China. qibosoft has a cross-site scripting vulnerability that originates in the /admin/index.php?lfj=friendlink & action=add link of the admin component of the product. The vulnerability is caused by the...

livehelperchat cross-site scripting vulnerability (CNVD-2022-01692)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat that stems from livehelperchat's susceptibility to input mismatches during web page generation "cross-site scripting"...

WordPress plugin Wappointment cross-site scripting vulnerability

WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress plugin Wappointment. The vulnerability...

Nordaaker Convos 跨站脚本漏洞

Nordaaker Convos is an open source web browser-based multi-user chat application from Nordaaker, Norway. A cross-site scripting vulnerability exists in Convos-Chat that stems from a stored cross-site scripting XSS issue in Convos-Chat prior to 6.32. An attacker could exploit the vulnerability to...

KNIME Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in Knime, the Swiss company's enterprise software for putting data science workflows into production. knime stems from the lack of proper validation of client-side data by the WEB application, which can be exploited by attackers to execute client-side...

Kentico Cross-Site Scripting Vulnerability (CNVD-2022-06913)

Kentico is an ASP.NET-based content management system CMS from Kentico, Inc. A security vulnerability exists in Kentico Xperience CMS, which stems from the fact that Kentico Xperience CMS version 13.0 13.0.43 is prone to a persistent cross-site scripting XSS vulnerability also known as stored or...

WordPress Cross-Site Scripting Vulnerability (CNVD-2021-100246)

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in Wordpress Plugin Events Manager, which stems from the...

Acronis Cyber Protect 15 Cross-Site Scripting Vulnerability (CNVD-2021-100276)

Acronis Cyber Protect is an application. Provides unified protection for your network by integrating backup, disaster recovery, artificial intelligence-based malware protection, remote assistance and security into a single, reliable tool. Acronis Cyber Protect 15 suffers from a cross-site scripti...

Acronis Cyber Protect 15 Cross-Site Scripting Vulnerability

Acronis Cyber Protect is an application. providing unified protection for your network by integrating backup, disaster recovery, artificial intelligence-based malware protection, remote assistance and security into a single, reliable tool.Acronis Cyber Protect 15 suffers from a cross-site scripti...

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in Wordpress Plugin Events Manager, which stems from the...