Lucene search
+L

153 matches found

Positive Technologies
Positive Technologies
added 2024/05/04 12:0 a.m.6 views

PT-2024-28123 · WordPress · Folders Pro

Name of the Vulnerable Software and Affected Versions: Folders Pro plugin for WordPress versions up to, and including, 3.0.2 Description: The issue is related to Stored Cross-Site Scripting, which occurs due to insufficient input sanitization and output escaping of a user's First Name and Last...

5.4CVSS6.4AI score0.00369EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/02 12:0 a.m.21 views

CVE-2024-33303

SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" under Add Users...

6AI score0.00508EPSS
Exploits1References1
OSV
OSV
added 2024/05/01 8:15 p.m.3 views

CVE-2024-33306

SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting XSS via "First Name" parameter in Create User...

7.4CVSS5.8AI score0.00657EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.5 views

PT-2024-24177 · Unknown · Cosmetics/Beauty Product Online Store

Name of the Vulnerable Software and Affected Versions: Cosmetics and Beauty Product Online Store version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the First Name parameter. This enables attackers...

6.1CVSS5.9AI score0.00435EPSS
Exploits1References6
OSV
OSV
added 2024/04/11 8:15 p.m.5 views

CVE-2024-22717

Cross Site Scripting XSS vulnerability in Form Tools 3.1.1 allows attackers to run arbitrary code via the First Name field in the application...

6.1CVSS6AI score0.0037EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/04/11 12:0 a.m.4 views

Form Tools 安全漏洞

Form Tools is an open source codebase for Form Tools scripts, modules, themes and APIs. A security vulnerability exists in Form Tools version 3.1.1, which stems from a cross-site scripting XSS vulnerability in the First Name field...

6.1CVSS5.7AI score0.0037EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/04/11 12:0 a.m.5 views

PT-2024-19536 · Unknown · Form Tools

Name of the Vulnerable Software and Affected Versions: Form Tools version 3.1.1 Description: A Cross Site Scripting XSS issue allows attackers to run arbitrary code via the First Name field in the application. This enables attackers to execute malicious scripts on the client-side, potentially...

6.1CVSS7.2AI score0.0037EPSS
Exploits1References4
OSV
OSV
added 2024/03/28 7:15 p.m.7 views

CVE-2024-31064

Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the First Name input field...

6.1CVSS6.1AI score0.00656EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2024/03/28 7:15 p.m.3 views

CVE-2024-31064

Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a remote attacker to execute arbitrary code via the First Name input field...

6.1CVSS6.3AI score0.00656EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/03/28 12:0 a.m.5 views

Insurance Management System 安全漏洞

Insurance Management System is an insurance management system from the individual developer Angel Jude Reyes Suarez. A security vulnerability exists in Insurance Management System v.1.0.0 and prior versions, which stems from a cross-site scripting XSS vulnerability in the First Name field...

6.1CVSS5.7AI score0.00656EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/03/28 12:0 a.m.10 views

PT-2024-23744

Name of the Vulnerable Software and Affected Versions Insurance Mangement System versions 1.0.0 and earlier Description The issue allows a remote attacker to execute arbitrary code via the First Name input field. This is a Cross Site Scripting vulnerability. Recommendations For versions 1.0.0 and...

6.1CVSS6.4AI score0.00656EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/01/07 12:0 a.m.6 views

Online Lawyer Management System 跨站脚本漏洞

Online Lawyer Management System is an online lawyer management system. Online Lawyer Management System version 1.0 suffers from a cross-site scripting vulnerability, which stems from the lack of effective filtering and escaping of user-supplied data in the parameter First Name in the component Us...

5.4CVSS6.2AI score0.00683EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/12/30 12:0 a.m.6 views

PT-2023-32920 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 1.0 Description: A problematic vulnerability was found in the PHPGurukul Hospital Management System, affecting an unknown part of the file registration.php. The manipulation of the First Name...

5.4CVSS6.2AI score0.0146EPSS
Exploits2References11
ATTACKERKB
ATTACKERKB
added 2023/10/16 9:15 p.m.5 views

CVE-2023-40851

Cross Site Scripting XSS vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to run arbitrary code via fname, lname, email, and contact fields of the user registration page...

5.4CVSS6AI score0.00371EPSS
Exploits1References2
OSV
OSV
added 2023/10/16 9:15 p.m.4 views

CVE-2023-40851

Cross Site Scripting XSS vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to run arbitrary code via fname, lname, email, and contact fields of the user registration page...

5.4CVSS6AI score0.00371EPSS
Exploits1References1
OSV
OSV
added 2023/10/13 2:15 p.m.3 views

CVE-2023-45391

A stored cross-site scripting XSS vulnerability in the Create A New Employee function of Granding UTime Master v9.0.7-Build:Apr 4,2023 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the First Name parameter...

4.8CVSS5.9AI score0.00351EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/08/04 12:15 a.m.6 views

CVE-2023-36158

Cross Site Scripting XSS vulnerability in sourcecodester Toll Tax Management System 1.0 allows remote attackers to run arbitrary code via the First Name and Last Name fields on the My Account page...

6.1CVSS6.1AI score0.0062EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/08/03 12:0 a.m.5 views

Lost and Found Information System Cross-Site Scripting Vulnerability

Lost and Found Information System is a lost and found information system by the individual developer oretnom23. A security vulnerability exists in version 1.0 of the Lost and Found Information System, which can be exploited to run arbitrary code via the First Name and Last Name fields on the Crea...

6.1CVSS7AI score0.0051EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2023/07/06 2:15 a.m.5 views

CVE-2023-27225

A cross-site scripting XSS vulnerability in User Registration & Login and User Management System with Admin Panel v3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the first and last name field...

5.4CVSS6.2AI score0.00512EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/07/06 12:0 a.m.11 views

PT-2023-21014 · Unknown · Phpgurukul User Registration & Login/User Management System With Admin Panel

Name of the Vulnerable Software and Affected Versions: User Registration & Login and User Management System with Admin Panel version 3 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the first and last nam...

5.4CVSS5.6AI score0.00512EPSS
Exploits0References5
Rows per page
Query Builder