82 matches found
CVE-2021-46321
Tenda AC Series Router AC11V02.03.01.104CN was discovered to contain a stack buffer overflow in the wifiBasicCfg module. This vulnerability allows attackers to cause a Denial of Service DoS via crafted overflow data...
Mageia: Security Advisory (MGASA-2014-0445)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-33332
Cross-site scripting XSS vulnerability in the Portlet Configuration module in Liferay Portal 7.1.0 through 7.3.2, and Liferay DXP 7.1 before fix pack 19, and 7.2 before fix pack 7, allows remote attackers to inject arbitrary web script or HTML via the...
[SECURITY] Fedora 34 Update: plymouth-kcm-5.21.3-1.fc34
This is a System Settings configuration module for configuring the plymouth splash screen...
Fedora: Security Advisory for plymouth-kcm (FEDORA-2021-85c9774673)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Python-based Spy RAT Emerges to Target FinTech
The Evilnum group, which specializes in targeting financial technology companies, has debuted a new tool: A Python-based remote access trojan RAT, dubbed PyVil. The malware’s emergence dovetails with a change in the chain of infection and an expansion of infrastructure for the APT. According to...
Navigate CMS Cross-Site Scripting Vulnerability (CNVD-2020-49507)
Navigate CMS is a powerful and intuitive content management system. A cross-site scripting vulnerability exists in the Configuration module of Navigate CMS 2.9. The vulnerability can be exploited to conduct cross-site scripting attacks...
Navigate CMS Cross-Site Scripting Vulnerability (CNVD-2020-49508)
Navigate CMS is a powerful and intuitive content management system. A cross-site scripting vulnerability exists in the Configuration module of Navigate CMS 2.9. The vulnerability can be exploited to conduct cross-site scripting attacks...
CVE-2020-23655
NavigateCMS 2.9 is affected by Cross Site Scripting XSS on module "Configuration."...
CVE-2020-23657
NavigateCMS 2.9 is affected by Cross Site Scripting XSS on module "Configuration."...
CVE-2020-23657
NavigateCMS 2.9 is affected by Cross Site Scripting XSS on module "Configuration."...
Cross site scripting
NavigateCMS 2.9 is affected by Cross Site Scripting XSS on module "Configuration."...
Cross site scripting
NavigateCMS 2.9 is affected by Cross Site Scripting XSS on module "Configuration."...
CVE-2020-23657
NavigateCMS 2.9 is affected by Cross Site Scripting XSS on module "Configuration."...
CVE-2020-23655
NavigateCMS 2.9 is affected by Cross Site Scripting XSS on module "Configuration."...
phpMyFAQ 2.9.8 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: phpMyFAQ 2.9.8 Stored XSS Vendor Homepage: http://www.phpmyfaq.de/ Software Link: http://download.phpmyfaq.de/phpMyFAQ-2.9.8.zip Exploit Author: Ishaq Mohammed Contact: https://twitter.com/securityprince Website:...
phpMyFAQ 2.9.8 - Cross-Site Scripting (2)
phpMyFAQ 2.9.8 - Cross-Site Scripting 2 Exploit Title: phpMyFAQ 2.9.8 Stored XSS Vendor Homepage: http://www.phpmyfaq.de/ Software Link: http://download.phpmyfaq.de/phpMyFAQ-2.9.8.zip Exploit Author: Ishaq Mohammed Contact: https://twitter.com/securityprince Website:...
phpMyFAQ 2.9.8 Cross Site Scripting
Exploit Title: phpMyFAQ 2.9.8 Stored XSS Vendor Homepage: http://www.phpmyfaq.de/ Software Link: http://download.phpmyfaq.de/phpMyFAQ-2.9.8.zip Exploit Author: Ishaq Mohammed Contact: https://twitter.com/securityprince Website: https://about.me/security-prince Category: webapps CVE: CVE-2017-1461...
phpMyFAQ 2.9.8 - Cross-Site Scripting (2)
Exploit Title: phpMyFAQ 2.9.8 Stored XSS Vendor Homepage: http://www.phpmyfaq.de/ Software Link: http://download.phpmyfaq.de/phpMyFAQ-2.9.8.zip Exploit Author: Ishaq Mohammed Contact: https://twitter.com/securityprince Website: https://about.me/security-prince Category: webapps CVE: CVE-2017-1461...
Cross-site Scripting (XSS)
phpMyFAQ is vulnerable to cross-site scripting XSS attacks. The library does not escape the Title of your FAQ field in the Configuration module, allowing a malicious user to inject and execute arbitrary web script...