CVE-2025-5011

A vulnerability classified as problematic was found in moonlightL hexo-boot 4.3.0. This vulnerability affects unknown code of the file /admin/home/index.html of the component Dynamic List Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has...

Hexo 安全漏洞

Hexo is a fast, simple and powerful blogging framework by Tommy Chen, a personal developer in China. A security vulnerability exists in Hexo version 4.3.0, which stems from improper handling of the file /admin/home/index.html, which could lead to a cross-site scripting attack...

BDTASK G-Prescription Gynaecology & OBS Consultation Software Cross-Site Scripting Vulnerability

BDTASK G-Prescription Gynaecology & OBS Consultation Software is a prescription gynecology and OBS consultation software from BDTASK Bangladesh. A cross-site scripting vulnerability exists in BDTASK G-Prescription Gynaecology & OBS Consultation Software version 1.0, which stems from the parameter...

PT-2024-19549 · Unknown · Bdtask G-Prescription Gynaecology & Obs Consultation

Name of the Vulnerable Software and Affected Versions: Bdtask G-Prescription Gynaecology & OBS Consultation Software version 1.0 Description: A problematic issue has been found in the software, affecting the processing of the file /Home/Index of the Prescription Dashboard component. The...

CVE-2017-14535

trixbox 2.8.0.4 has OS command injection via shell metacharacters in the lang parameter to /maint/modules/home/index.php...

CVE-2017-14537

trixbox 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /maint/modules/home/index.php...