10 matches found
EUVD-2025-31352
Malicious code in bioql PyPI...
CVE-2025-11019
A vulnerability has been found in Total.js CMS up to 19.9.0. This impacts an unknown function of the component Files Menu. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-11019
A vulnerability has been found in Total.js CMS up to 19.9.0. This impacts an unknown function of the component Files Menu. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-11019
A vulnerability has been found in Total.js CMS up to 19.9.0. This impacts an unknown function of the component Files Menu. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-11019 Total.js CMS Files Menu cross site scripting
A vulnerability has been found in Total.js CMS up to 19.9.0. This impacts an unknown function of the component Files Menu. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-11019 Total.js CMS Files Menu cross site scripting
A vulnerability has been found in Total.js CMS up to 19.9.0. This impacts an unknown function of the component Files Menu. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-11019
Total.js CMS (up to 19.9.0) has a cross-site scripting vulnerability in the Files Menu component caused by manipulation of an unknown function. The issue can be exploited remotely and an exploit has been disclosed publicly. The connected documents consistently reference Total.js CMS and the Files...
PT-2025-39646
Name of the Vulnerable Software and Affected Versions Total.js CMS versions up to 19.9.0 Description A flaw exists in Total.js CMS that allows for cross site scripting through manipulation of an unknown function within the Files Menu component. This issue can be exploited remotely, and details...
Total.js CMS 代码注入漏洞
Total.js CMS is a Total.js open source content management system CMS based on NoSQL database. A code injection vulnerability exists in Total.js CMS version 19.9.0 and earlier, which stems from a mishandling of an unknown function in the Files Menu component that could lead to a cross-site scripti...
CVE-2022-28478
SeedDMS 6.0.17 and 5.1.24 are vulnerable to Directory Traversal. The "Remove file" functionality inside the "Log files management" menu does not sanitize user input allowing attackers with admin privileges to delete arbitrary files on the remote system...