HTMLy 路径遍历漏洞

HTMLy is a PHP-based open source blogging platform. HTMLy v2.8.1 version of a path traversal vulnerability, the vulnerability stems from the presence of arbitrary file deletion in its viewsackup.html.php component...

PT-2022-11210 · Htmly · Htmly

Name of the Vulnerable Software and Affected Versions: htmly version 2.8.1 Description: The issue is related to an arbitrary file deletion vulnerability. It affects the component viewsbackup.html.php. There is no information provided about the estimated number of potentially affected devices...

HTMLy cross-site scripting vulnerability (CNVD-2022-82256)

HTMLy is an open source database-free PHP blogging platform. A cross-site scripting vulnerability exists in HTMLy version 2.8.1, which originates from the "description" field in the admin/config and index.php pages. The vulnerability can be exploited to execute malicious code, manipulate pages to...

HTMLy cross-site scripting vulnerability (CNVD-2022-82257)

HTMLy is an open source database-free PHP blogging platform. A cross-site scripting vulnerability exists in HTMLy version 2.8.1, which originates from the presence of the "copyright" field in the /admin/config page. The vulnerability can be exploited to execute malicious code, manipulate pages to...

CVE-2021-42946

A Cross Site Scripting XSS vulnerability exists in htmly.2.8.1 via the Copyright field in the /admin/config page...

CVE-2021-42946

A Cross Site Scripting XSS vulnerability exists in htmly.2.8.1 via the Copyright field in the /admin/config page...

CVE-2021-42867

A Cross Site Scripting XSS vulnerability exists in DanPros htmly 2.8.1 via the Description field in 1 admin/config, and 2 index.php pages...

CVE-2021-42867

A Cross Site Scripting XSS vulnerability exists in DanPros htmly 2.8.1 via the Description field in 1 admin/config, and 2 index.php pages...

Cross site scripting

A Cross Site Scripting XSS vulnerability exists in htmly.2.8.1 via the Copyright field in the /admin/config page...

Cross site scripting

A Cross Site Scripting XSS vulnerability exists in DanPros htmly 2.8.1 via the Description field in 1 admin/config, and 2 index.php pages...

CVE-2021-42946

A Cross Site Scripting XSS vulnerability exists in htmly.2.8.1 via the Copyright field in the /admin/config page...

CVE-2021-42946

CVE-2021-42946 describes a Cross Site Scripting (XSS) vulnerability in HTMLy 2.8.1 that can be triggered through the “copyright” field on the /admin/config page. The connected sources confirm the affected product and location of the vulnerability, but do not provide explicit details on root cause...

CVE-2021-42867

A Cross Site Scripting XSS vulnerability exists in DanPros htmly 2.8.1 via the Description field in 1 admin/config, and 2 index.php pages...

CVE-2021-42867

CVE-2021-42867 pertains to HTMLy 2.8.1 (also referenced as DanPros htmly 2.8.1) and describes a cross-site scripting (XSS) vulnerability that originates in the Description field used by the admin/config and index.php pages. The root cause is that unsanitized or unsafe content in the Description f...

HTMLy 跨站脚本漏洞

HTMLy is an open source database-free PHP blogging platform. A cross-site scripting vulnerability exists in HTMLy version 2.8.1, which originates from the "description" field in the admin/config and index.php pages. The vulnerability can be exploited to execute malicious code, manipulate pages to...

HTMLy 跨站脚本漏洞

HTMLy is a PHP-based open source blogging platform. A security vulnerability exists in HTMLy 2.8.1 that could lead to cross-site scripting via the copyright field in the /admin/config page...

CVE-2022-1087

A vulnerability, which was classified as problematic, has been found in htmly 5.3 whis affects the component Edit Profile Module. The manipulation of the field Title with script tags leads to persistent cross site scripting. The attack may be initiated remotely and requires an authentication. A...

CVE-2022-1087

A vulnerability, which was classified as problematic, has been found in htmly 5.3 whis affects the component Edit Profile Module. The manipulation of the field Title with script tags leads to persistent cross site scripting. The attack may be initiated remotely and requires an authentication. A...

Cross site scripting

A vulnerability, which was classified as problematic, has been found in htmly 5.3 whis affects the component Edit Profile Module. The manipulation of the field Title with script tags leads to persistent cross site scripting. The attack may be initiated remotely and requires an authentication. A...

CVE-2022-1087 htmly Edit Profile Module cross site scripting

A vulnerability, which was classified as problematic, has been found in htmly 5.3 whis affects the component Edit Profile Module. The manipulation of the field Title with script tags leads to persistent cross site scripting. The attack may be initiated remotely and requires an authentication. A...