102 matches found
EUVD-2009-4588
Malware in sbrugna...
EUVD-2018-10559
Malware in sbrugna...
EUVD-2018-10339
Malware in sbrugna...
EUVD-2023-34368
Malicious code in bioql PyPI...
EUVD-2022-2018
Malicious code in bioql PyPI...
CVE-2023-2922
A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...
CVE-2020-35598
ACS Advanced Comment System 1.0 is affected by Directory Traversal via an advancedcomponentsystem/index.php?ACSpath=..%2f URI. NOTE: this might be the same as CVE-2009-4623...
CVE-2014-5345
Cross-site scripting XSS vulnerability in upgrade.php in the Disqus Comment System plugin before 2.76 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step parameter...
CVE-2014-5346
Multiple cross-site request forgery CSRF vulnerabilities in the Disqus Comment System plugin 2.77 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 activate or 2 deactivate the plugin via the active parameter to wp-admin/edit-comments.php, 3...
WordPress plugin 畅言评论系统 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security...
PT-2024-36648 · 搜狐畅言 · 搜狐畅言
Name of the Vulnerable Software and Affected Versions: 搜狐畅言 畅言评论系统 versions n/a through 2.0.5 Description: The issue is related to a missing authorization vulnerability that allows the exploitation of incorrectly configured access control security levels. Recommendations: For versions n/a through...
PT-2023-7829 · Unknown · Anycomment.Io
Name of the Vulnerable Software and Affected Versions: Anycomment.io affected versions not specified Description: The issue is related to the lack of protection for the web page structure in the comment system. This could allow a remote attacker to execute arbitrary JavaScript code...
CVE-2023-2922
A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...
CVE-2023-2922
A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...
Cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...
CVE-2023-2922
CVE-2023-2922 affects SourceCodester Comment System 1.0. The vulnerability is in the index.php file, within the GET Parameter Handler, where tampering the msg parameter triggers cross-site scripting. Exploitation is possible remotely and has been disclosed publicly. Several connected sources corr...
CVE-2023-2922 SourceCodester Comment System GET Parameter index.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...
CVE-2023-2922 SourceCodester Comment System GET Parameter index.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Comment System 1.0. Affected is an unknown function of the file index.php of the component GET Parameter Handler. The manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack...
SourceCodester Comment System 跨站脚本漏洞
Plohni Advanced Comment System is a comment system by Plohni Individual Developers. A cross-site scripting vulnerability exists in SourceCodester Comment System version 1.0 due to an unknown function in the file index.php in the component GET Parameter Handler, which could lead to cross-site...
PT-2023-22212 · Unknown · Sourcecodester Comment System
Name of the Vulnerable Software and Affected Versions: SourceCodester Comment System version 1.0 Description: A problematic vulnerability has been found in the SourceCodester Comment System. The issue affects an unknown function of the file index.php, specifically the component GET Parameter...