875 matches found
WordPress download-monitor plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. download-monitor is a plugin for uploading and managing downloadable files. A cross-site scripting vulnerability exists in the WordPre...
LavaLite Cross-Site Scripting Vulnerability (CNVD-2021-48847)
LavaLite is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in LavaLite 5.7 and earlier versions, which stems from a lack of proper validation of client-side data in the WEB application and can be exploited by an attacker to execute client-sid...
WordPress htaccess plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. htaccess is an access control plugin used in it. A cross-site scripting vulnerability exists in the WordPress htaccess plugin versions...
WordPress liquid-speech-balloon plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. liquid-speech-balloon is a visual editor plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
Magento cross-site scripting vulnerability (CNVD-2019-34461)
Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. Magento cross-site scripting vulnerability , the vulnerability stems from the lack of WEB applications on the...
cPanel cross-site scripting vulnerability (CNVD-2019-34455)
cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in the WHM Update Preferences interface in versions of cPanel prior to 82.0.15. The...
WordPress display-widgets plugin cross-site scripting vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. display-widgets is a widget display plugin used in it. A cross-site scripting vulnerability exists in WordPress display-widgets...
WordPress dynamic-widgets plugin cross-site scripting vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. dynamic-widgets is a dynamic widget management plugin used in it. A cross-site scripting vulnerability exists in WordPress...
noVNC Cross-Site Scripting Vulnerability
noVNC is an HTML VNC Virtual Network Computing client library. A cross-site scripting vulnerability exists in versions of noVNC prior to 0.6.2. The vulnerability stems from the lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerability to...
Flower Cross-Site Scripting Vulnerability (CNVD-2019-35802)
Flower is a web-based tool for monitoring and managing Celery clusters. A cross-site scripting vulnerability exists in Flower version 0.9.3, which stems from a lack of proper validation of client-side data by the WEB application and can be exploited by an attacker to execute client-side code...
Couchbase Server Cross-Site Scripting Vulnerability
Couchbase Server is a distributed open source NoSQL non-relational database from the U.S. company Couchbase , which mainly supports data query , full-text search and active global replication and other functions . A cross-site scripting vulnerability exists in Couchbase Server versions 5.5.0 and...
WordPress wp-symposium plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. wp-symposium is a social networking plugin used in it. A cross-site scripting vulnerability exists in the WordPress wp-symposium plugi...
WordPress Royal-Slider plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Royal-Slider is a responsive image gallery and content slider plugin used in it. A cross-site scripting vulnerability exists in the...
WordPress Postmatic Plugin Cross-Site Scripting Vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Postmatic is a web comment notification and reply plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
Dolibarr ERP/CRM Cross-Site Scripting Vulnerability (CNVD-2019-33852)
Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr ERP/CR...
Dolibarr ERP/CRM Cross-Site Scripting Vulnerability (CNVD-2019-33855)
Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr ERP/CR...
Dolibarr ERP/CRM Cross-Site Scripting Vulnerability (CNVD-2019-33853)
Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr ERP/CR...
Dolibarr ERP/CRM Cross-Site Scripting Vulnerability (CNVD-2019-33854)
Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr ERP/CR...
WordPress sitepress-multilingual-cms (WPML) plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. sitepress-multilingual-cms WPML plugin is a website multilingual support plugin used in it. A cross-site scripting vulnerability exist...
CloudBees Jenkins and LTS Cross-Site Scripting Vulnerability (CNVD-2019-34784)
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . LTS is a long-term support for...