64 matches found
CVE-2025-14013
A vulnerability was identified in JIZHICMS up to 2.5.5. The impacted element is an unknown function of the file /index.php/admins/Comment/addcomment.html of the component Comment Handler. The manipulation of the argument body leads to cross site scripting. The attack may be initiated remotely. Th...
EUVD-2025-201262
A vulnerability was identified in JIZHICMS up to 2.5.5. The impacted element is an unknown function of the file /index.php/admins/Comment/addcomment.html of the component Comment Handler. The manipulation of the argument body leads to cross site scripting. The attack may be initiated remotely. Th...
CVE-2025-14013
A vulnerability was identified in JIZHICMS up to 2.5.5. The impacted element is an unknown function of the file /index.php/admins/Comment/addcomment.html of the component Comment Handler. The manipulation of the argument body leads to cross site scripting. The attack may be initiated remotely. Th...
CVE-2025-14013 JIZHICMS Comment addcomment.html cross site scripting
A vulnerability was identified in JIZHICMS up to 2.5.5. The impacted element is an unknown function of the file /index.php/admins/Comment/addcomment.html of the component Comment Handler. The manipulation of the argument body leads to cross site scripting. The attack may be initiated remotely. Th...
CVE-2025-14013 JIZHICMS Comment addcomment.html cross site scripting
A vulnerability was identified in JIZHICMS up to 2.5.5. The impacted element is an unknown function of the file /index.php/admins/Comment/addcomment.html of the component Comment Handler. The manipulation of the argument body leads to cross site scripting. The attack may be initiated remotely. Th...
CVE-2025-14013
The CVE-2025-14013 entry affects JIZHICMS up to version 2.5.5, specifically the Comment Handler’s file /index.php/admins/Comment/addcomment.html. The issue is a cross-site scripting vulnerability caused by manipulation of the body parameter, with remote initiation possible and a public exploit av...
EUVD-2024-16564
Malicious code in bioql PyPI...
EUVD-2025-12458
Malicious code in bioql PyPI...
EUVD-2023-58700
Malicious code in bioql PyPI...
EUVD-2025-28919
Malicious code in bioql PyPI...
EUVD-2024-51038
Malicious code in bioql PyPI...
EUVD-2024-32262
Malicious code in bioql PyPI...
EUVD-2022-51745
Malicious code in bioql PyPI...
EUVD-2023-57370
Malicious code in bioql PyPI...
EUVD-2023-12365
Malicious code in bioql PyPI...
CVE-2025-10255
A vulnerability was determined in Ascensio System SIA OnlyOffice up to 12.7.0. Impacted is an unknown function of the file /Products/Projects/Messages.aspx of the component Comment Handler. Executing manipulation can lead to cross site scripting. The attack may be launched remotely. The exploit h...
CVE-2025-10255
A vulnerability was determined in Ascensio System SIA OnlyOffice up to 12.7.0. Impacted is an unknown function of the file /Products/Projects/Messages.aspx of the component Comment Handler. Executing manipulation can lead to cross site scripting. The attack may be launched remotely. The exploit h...
CVE-2025-10255
CVE-2025-10255 affects Ascensio System SIA OnlyOffice up to version 12.7.0. The issue is tied to an unknown function in the file /Products/Projects/Messages.aspx within the Comment Handler component, which can enable remote cross-site scripting via manipulation. Public exploit details exist, and ...
CVE-2025-10255 Ascensio System SIA OnlyOffice Comment Messages.aspx cross site scripting
A vulnerability was determined in Ascensio System SIA OnlyOffice up to 12.7.0. Impacted is an unknown function of the file /Products/Projects/Messages.aspx of the component Comment Handler. Executing manipulation can lead to cross site scripting. The attack may be launched remotely. The exploit h...
PT-2025-37192
Name of the Vulnerable Software and Affected Versions: OnlyOffice versions through 12.7.0 Description: A vulnerability exists in Ascensio System SIA OnlyOffice that can lead to cross site scripting. The issue is located in the Comment Handler component, specifically within the file...