153 matches found
PT-2024-28123 · WordPress · Folders Pro
Name of the Vulnerable Software and Affected Versions: Folders Pro plugin for WordPress versions up to, and including, 3.0.2 Description: The issue is related to Stored Cross-Site Scripting, which occurs due to insufficient input sanitization and output escaping of a user's First Name and Last...
CVE-2024-33303
SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" under Add Users...
CVE-2024-33306
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" parameter in Create User...
PT-2024-24177 · Unknown · Cosmetics/Beauty Product Online Store
Name of the Vulnerable Software and Affected Versions: Cosmetics and Beauty Product Online Store version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the First Name parameter. This enables attackers...
CVE-2024-22717
Cross Site Scripting XSS vulnerability in Form Tools 3.1.1 allows attackers to run arbitrary code via the First Name field in the application...
Form Tools 安全漏洞
Form Tools is an open source codebase for Form Tools scripts, modules, themes and APIs. A security vulnerability exists in Form Tools version 3.1.1, which stems from a cross-site scripting XSS vulnerability in the First Name field...
PT-2024-19536 · Unknown · Form Tools
Name of the Vulnerable Software and Affected Versions: Form Tools version 3.1.1 Description: A Cross Site Scripting XSS issue allows attackers to run arbitrary code via the First Name field in the application. This enables attackers to execute malicious scripts on the client-side, potentially...
CVE-2024-31064
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the First Name input field...
CVE-2024-31064
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the First Name input field...
Insurance Management System 安全漏洞
Insurance Management System is an insurance management system from the individual developer Angel Jude Reyes Suarez. A security vulnerability exists in Insurance Management System v.1.0.0 and prior versions, which stems from a cross-site scripting XSS vulnerability in the First Name field...
PT-2024-23744
Name of the Vulnerable Software and Affected Versions Insurance Mangement System versions 1.0.0 and earlier Description The issue allows a remote attacker to execute arbitrary code via the First Name input field. This is a Cross Site Scripting vulnerability. Recommendations For versions 1.0.0 and...
Online Lawyer Management System 跨站脚本漏洞
Online Lawyer Management System is an online lawyer management system. Online Lawyer Management System version 1.0 suffers from a cross-site scripting vulnerability, which stems from the lack of effective filtering and escaping of user-supplied data in the parameter First Name in the component Us...
PT-2023-32920 · Unknown · Phpgurukul Hospital Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 1.0 Description: A problematic vulnerability was found in the PHPGurukul Hospital Management System, affecting an unknown part of the file registration.php. The manipulation of the First Name...
CVE-2023-40851
Cross Site Scripting XSS vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to run arbitrary code via fname, lname, email, and contact fields of the user registration page...
CVE-2023-40851
Cross Site Scripting XSS vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to run arbitrary code via fname, lname, email, and contact fields of the user registration page...
CVE-2023-45391
A stored cross-site scripting XSS vulnerability in the Create A New Employee function of Granding UTime Master v9.0.7-Build:Apr 4,2023 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the First Name parameter...
CVE-2023-36158
Cross Site Scripting XSS vulnerability in sourcecodester Toll Tax Management System 1.0 allows remote attackers to run arbitrary code via the First Name and Last Name fields on the My Account page...
Lost and Found Information System Cross-Site Scripting Vulnerability
Lost and Found Information System is a lost and found information system by the individual developer oretnom23. A security vulnerability exists in version 1.0 of the Lost and Found Information System, which can be exploited to run arbitrary code via the First Name and Last Name fields on the Crea...
CVE-2023-27225
A cross-site scripting XSS vulnerability in User Registration & Login and User Management System with Admin Panel v3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the first and last name field...
PT-2023-21014 · Unknown · Phpgurukul User Registration & Login/User Management System With Admin Panel
Name of the Vulnerable Software and Affected Versions: User Registration & Login and User Management System with Admin Panel version 3 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the first and last nam...