6 matches found
EUVD-2025-26148
Malicious code in bioql PyPI...
CVE-2025-9591
A security vulnerability has been detected in ZrLog up to 3.1.5. This vulnerability affects unknown code of the file /api/admin/template/config of the component Theme Configuration Form. Such manipulation of the argument footerLink leads to cross site scripting. The attack may be launched remotel...
CVE-2025-9591 ZrLog Theme Configuration Form config cross site scripting
A security vulnerability has been detected in ZrLog up to 3.1.5. This vulnerability affects unknown code of the file /api/admin/template/config of the component Theme Configuration Form. Such manipulation of the argument footerLink leads to cross site scripting. The attack may be launched remotel...
ZrLog 安全漏洞
ZrLog is a blogging system developed in Java language by xiaochun individual developer. A security vulnerability exists in ZrLog 3.1.5 and earlier versions, which stems from cross-site scripting due to incorrect manipulation of the parameter footerLink in the file /api/admin/template/config...
PT-2025-35148
Name of the Vulnerable Software and Affected Versions: ZrLog versions up to 3.1.5 Description: A security vulnerability exists in ZrLog, potentially allowing for cross site scripting. The vulnerability affects unknown code within the /api/admin/template/config file of the Theme Configuration Form...
CVE-2024-39923
An issue was discovered in Mahara 24.04 before 24.04.2 and 23.04 before 23.04.7. The About, Contact, and Help footer links can be set up to be vulnerable to Cross Site Scripting XSS due to not sanitising the values. These links can only be set up by an admin but are clickable by any logged-in...