Dolibarr ERP/CRM Cross-Site Scripting Vulnerability (CNVD-2019-45129)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr CRM/ER...

NSSLGlobal Technologies SatLink VSAT Modem Unit Cross-Site Scripting Vulnerability

The NSSLGlobal Technologies SatLink VSAT Modem Unit VMU is a VSAT Very Small Aperture Terminal modem from NSSLGlobal Technologies. A cross-site scripting vulnerability exists in the web interface in NSSLGlobal Technologies SatLink VMU versions prior to 18.1.0. The vulnerability stems from a lack ...

CVE-2019-15652

The web interface for NSSLGlobal SatLink VSAT Modem Unit VMU devices before 18.1.0 doesn't properly sanitize input for error messages, leading to the ability to inject client-side code...

CVE-2019-15652

The CVE-2019-15652 entry concerns the web interface of NSSLGlobal SatLink VSAT Modem Unit (VMU). A vulnerability in the VMU web UI prior to version 18.1.0 arises from inadequate sanitization of input in error messages, enabling injection of client-side code (XSS) via crafted input. Documents cons...

CVE-2019-15652

The web interface for NSSLGlobal SatLink VSAT Modem Unit VMU devices before 18.1.0 doesn't properly sanitize input for error messages, leading to the ability to inject client-side code...

Statusnet Cross-Site Scripting Vulnerability

statusnet is an open source micro-blogging program written in PHP. A cross-site scripting vulnerability exists in the content of error messages in statusnet 2010 and prior versions. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker ca...

Matomo Cross-Site Scripting Vulnerability

matomo is an open source web analytics application based on PHP and MySQL. A cross-site scripting vulnerability exists in matomo versions prior to 1.10.1. The vulnerability stems from the WEB application w failing to properly validate client-side data. An attacker can exploit the vulnerability to...

matomo cross-site scripting vulnerability (CNVD-2019-42239)

matomo is an open source web analytics application based on PHP and MySQL. A cross-site scripting vulnerability exists in matomo versions prior to 1.10.1. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerabilit...

Openfind Mail2000 /cgi-bin/go page cross-site scripting vulnerability

Openfind Mail2000 is a Web-based e-mail system. A cross-site scripting vulnerability exists in the /cgi-bin/go page in Openfind MAIL2000 versions 6.0 and earlier and 7.0 and earlier. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker c...

JetBrains YouTrack Cross-Site Scripting Vulnerability (CNVD-2019-41873)

JetBrains YouTrack is a browser-based bug tracking and project management software from the Czech company JetBrains. The software features bug tracking, creating workflows and monitoring project progress. A cross-site scripting vulnerability exists in JetBrains YouTrack. An attacker can exploit...

TemaTres Cross-Site Scripting Vulnerability

TemaTres is an open source vocabulary server. A cross-site scripting vulnerability exists in TemaTres version 3.0, which can be exploited by an attacker to execute client-side code...

Mailbird Cross-Site Scripting Vulnerability (CNVD-2019-42567)

Mailbird is an email client application from the Mailbird team. A cross-site scripting vulnerability exists in Mailbird versions prior to 2.7.5.0 r, which can be exploited by an attacker to execute client-side code...

Octopus Deploy Cross-Site Scripting Vulnerability (CNVD-2019-42443)

Octopus Deploy is an automation tool for .NET, Java and other application development and deployment from Octopus Deploy Australia. A cross-site scripting vulnerability exists in Octopus Server, which stems from the lack of proper validation of client-side data by the WEB application and can be...

go-camo cross-site scripting vulnerability

go-camo is an image proxy server. A cross-site scripting vulnerability exists in go-camo versions prior to 2.1.1, which can be exploited by an attacker to execute client-side code...

TYPO3 cross-site scripting vulnerability (CNVD-2019-41224)

TYPO3 is a free and open source content management system framework CMS/CMF of the Swiss TYPO3 Association. A cross-site scripting vulnerability exists in TYPO3 versions prior to 4.3.12, 4.4.x prior to 4.4.9 and 4.5.x prior to 4.5.4. The vulnerability stems from a lack of proper validation of...

TYPO3 cross-site scripting vulnerability (CNVD-2019-41232)

TYPO3 is a free and open source content management system framework CMS/CMF of the Swiss TYPO3 Association. A cross-site scripting vulnerability exists in TYPO3 versions prior to 4.3.12, 4.4.x prior to 4.4.9 and 4.5.x prior to 4.5.4. The vulnerability stems from a lack of proper validation of...

TYPO3 cross-site scripting vulnerability (CNVD-2019-41223)

TYPO3 is a free and open source content management system framework CMS/CMF of the Swiss TYPO3 Association. A cross-site scripting vulnerability exists in TYPO3 versions prior to 4.3.12, 4.4.x prior to 4.4.9 and 4.5.x prior to 4.5.4. The vulnerability stems from a lack of proper validation of...

Magento cross-site scripting vulnerability (CNVD-2019-40741)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engine and payment gateway and other functions. Magento has a cross-site scripting vulnerability. Attackers can use this vulnerability to execute client-side code...

Magento cross-site scripting vulnerability (CNVD-2019-40740)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. Magento has a cross-site scripting vulnerability. Attackers can use this vulnerability to execute client-side cod...

Magento cross-site scripting vulnerability (CNVD-2019-40739)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. Magento has a cross-site scripting vulnerability. Attackers can use this vulnerability to execute client-side cod...