PT-2024-30211 · Yzncms · Yzncms

Name of the Vulnerable Software and Affected Versions: YZNCMS version 1.4.2 Description: A cross-site scripting XSS issue in the /index/index.html component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the configured remarks text field...

PT-2024-28408 · Simpcms · Simpcms

Name of the Vulnerable Software and Affected Versions: SimpCMS version 0.1 Description: A cross-site scripting XSS vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title field at the "/admin.php" API endpoint. Recommendations: For...

PT-2023-20976 · Opencrx · Opencrx

Name of the Vulnerable Software and Affected Versions: openCRX version 5.2.0 Description: A cross-site scripting XSS issue was discovered in openCRX, which occurs via the Name field after creating a Tracker in Manage Activity. This allows for potential malicious script execution. Recommendations:...

PT-2023-11772 · Churchcrm · Churchcrm

Name of the Vulnerable Software and Affected Versions: ChurchCRM version 4.2.1 Description: The issue allows remote attackers to execute arbitrary code and gain sensitive information via a crafted payload in the Add New Deposit field in the View All Deposit module. This is a Cross Site Scripting...

PT-2022-24496 · Unknown · Markdown-Nice

Name of the Vulnerable Software and Affected Versions: Markdown-Nice version 1.8.22 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field. Recommendations: For Markdown-Nice version...

PT-2021-10858 · Phplist · Phplist

Name of the Vulnerable Software and Affected Versions: phplist version 3.5.3 Description: A stored cross site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Send test field under the Start or continue campaign module...