874 matches found
CloudBees Jenkins and LTS Cross-Site Scripting Vulnerability (CNVD-2019-34785)
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . LTS is a long-term support for...
DOMPurify Cross-Site Scripting Vulnerability
DOMPurify is a DOM Document Object Model written in JavaScript for HTML, MathML and SVG. A cross-site scripting vulnerability exists in versions of DOMPurify prior to 2.0.1, which stems from a lack of proper validation of client-side data by the WEB application and can be exploited by an attacker...
Joomla! cross-site scripting vulnerability (CNVD-2020-12779)
Joomla! is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source , cross-platform content management system CMS. A cross-site scripting vulnerability exists in Joomla! The vulnerability stems from a lack of proper validation of client-side data in the WEB...
WordPress music-store plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. music-store is an online music store plugin used in it. A cross-site scripting vulnerability exists in WordPress music-store plugin...
WordPress ScoreMe theme cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.ScoreMe theme is a theme plugin used to build sites with user ratings. A cross-site scripting vulnerability exists in WordPress ScoreMe...
PHPMyWind Cross-Site Scripting Vulnerability (CNVD-2019-35827)
PHPMyWind is a set of PHP and MySQL-based and W3C-compliant enterprise website building solutions. A cross-site scripting vulnerability exists in the admin/infoclassupdate.php file in version 5.6 of PHPMyWind, which stems from the lack of proper validation of client-side data in the WEB applicati...
Zulip server cross-site scripting vulnerability (CNVD-2021-10499)
Zulip server is an open source team chat application from the American company Zulip. A cross-site scripting vulnerability exists in Zulip server versions prior to 2.0.5. The vulnerability stems from the WEB application's lack of proper validation of client-side data. An attacker can exploit this...
SPIP cross-site scripting vulnerability (CNVD-2019-32493)
SPIP is a Web-based content publishing system. The system is primarily used for online collaboration. A cross-site scripting vulnerability exists in SPIP versions prior to 3.1.11 and 3.2.2 prior to 3.2.5, which can be exploited by an attacker to execute client-side code...
Pinfinity theme for WordPress cross-site scripting vulnerability
Pinfinity theme for WordPress is a multipurpose theme plugin for WordPress. Pinfinity theme for WordPress suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to execute client-side code...
WordPress postman-smtp plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. postman-smtp is an email plugin used in it. A cross-site scripting vulnerability exists in the WordPress postman-smtp plugin. An...
WordPress podlove-podcasting-plugin-for-wordpress plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. podlove-podcasting-plugin-for-wordpress is a plugin for video sites used in it. A cross-site scripting vulnerability exists in...
OpenEMR Cross-Site Scripting Vulnerability (CNVD-2019-32189)
OpenEMR is a medical practice management software that also supports electronic medical records EMR. A cross-site scripting vulnerability exists in OpenEMR 5.0.1-6, which can be exploited by an attacker to execute client-side code...
WordPress magic-fields plugin cross-site scripting vulnerability (CNVD-2019-32383)
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. magic-fields is a web form field customization plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
WordPress Cross-Site Scripting Vulnerability (CNVD-2019-31834)
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress has a cross-site scripting vulnerability that can be exploited by attackers to execute client-side...
WordPress Cross-Site Scripting Vulnerability (CNVD-2019-31833)
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress has a cross-site scripting vulnerability that can be exploited by attackers to execute client-side...
WordPress Cross-Site Scripting Vulnerability (CNVD-2019-31836)
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress has a cross-site scripting vulnerability that can be exploited by attackers to execute client-side...
WordPress Cross-Site Scripting Vulnerability (CNVD-2019-31831)
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress has a cross-site scripting vulnerability that can be exploited by attackers to execute client-side...
WordPress cf7-invisible-recaptcha plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. cf7-invisible-recaptcha is an anti-spam plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
WordPress Cross-Site Scripting Vulnerability (CNVD-2019-31830)
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress has a cross-site scripting vulnerability that can be exploited by attackers to execute client-side...
Mautic cross-site scripting vulnerability (CNVD-2019-31196)
Mautic is an open source marketing automation software. The software monitors and manages websites, sends emails and manages customer resources. A cross-site scripting vulnerability exists in Mautic version 2.13.1, which can be exploited by an attacker to execute client-side code...