CVE-2022-25517

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. NOTE: the vendor's position is that the reported execution of a SQL statement was intended behavior...

Sql injection

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java...

PT-2022-17346 · Unknown · Mybatis Plus

Name of the Vulnerable Software and Affected Versions: MyBatis plus version 3.4.3 Description: The issue concerns a SQL injection vulnerability via the Column parameter in the /core/conditions/AbstractWrapper.java file. It is noted that the vendor considers the reported execution of a SQL stateme...

CVE-2022-25517

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. NOTE: the vendor's position is that the reported execution of a SQL statement was intended behavior...

CVE-2022-25517

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. NOTE: the vendor's position is that the reported execution of a SQL statement was intended behavior...

CVE-2022-27196

Jenkins Favorite Plugin 2.4.0 and earlier does not escape the names of jobs in the favorite column, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure or Item/Create permissions...

CVE-2021-44969

Taocms v3.0.2 was discovered to contain a cross-site scripting XSS vulnerability via the Management Column component...

CVE-2021-44969

Taocms v3.0.2 was discovered to contain a cross-site scripting XSS vulnerability via the Management Column component...

Cross site scripting

Taocms v3.0.2 was discovered to contain a cross-site scripting XSS vulnerability via the Management Column component...

CVE-2021-44969

CVE-2021-44969 affects Taocms v3.0.2, with an XSS vulnerability in the Management Column component. Connected sources indicate the root cause as insufficient validation of client-side data, enabling potential execution of client-side code. No exploitation details or patches are provided in the su...

CVE-2021-44969

Taocms v3.0.2 was discovered to contain a cross-site scripting XSS vulnerability via the Management Column component...

CVE-2020-20600

MetInfo 7.0 beta contains a stored cross-site scripting XSS vulnerability in the $name parameter of admin/?n=column&c=index&a=doAddColumn...

CVE-2020-20600

CVE-2020-20600 affects MetInfo 7.0 beta. The vulnerability is a stored cross-site scripting (XSS) in the $name parameter of admin/?n=column&c=index&a=doAddColumn. This is confirmed across multiple feeds (NVD, RH, CVE lists) and is tied to MetInfo 7.0 beta with the vulnerability location in the sp...

CVE-2020-20600

MetInfo 7.0 beta contains a stored cross-site scripting XSS vulnerability in the $name parameter of admin/?n=column&c=index&a=doAddColumn...

CVE-2021-45017

Catfish CMS CSRF in

CVE-2021-25785

Taocms v2.5Beta5 was discovered to contain a cross-site scripting XSS vulnerability via the component Management column...

CVE-2021-25785

Taocms v2.5Beta5 was discovered to contain a cross-site scripting XSS vulnerability via the component Management column...

Cross site scripting

Taocms v2.5Beta5 was discovered to contain a cross-site scripting XSS vulnerability via the component Management column...

CVE-2021-25785

Taocms v2.5Beta5 was discovered to contain a cross-site scripting XSS vulnerability via the component Management column...

Cross site scripting

Multiple Cross Site Scripting XSS vulnerabilities exits in SEO Panel v4.8.0 via the 1 totime parameter in a backlinks.php, b analytics.php, c log.php, d overview.php, e pagespeed.php, f rank.php, g review.php, h saturationchecker.php, i socialmedia.php, and j reports.php; the 2 fromtime parameter...