Vinades NukeViet 跨站脚本漏洞

Vinades NukeViet is an open-source content management system CMS developed by the Vietnamese company Vinades. Versions of Vinades NukeViet 4.5.07 and earlier had a cross-site scripting vulnerability. This vulnerability stemmed from insufficient input cleansing on the server side, which could lead...

WordPress plugin Age Verification & Identity Verification by Token of Trust 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

WordPress plugin Schema Shortcode 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

WordPress plugin Ed s Social Share 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

WordPress plugin DA Media GigList 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

WordPress plugin Complianz 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

WordPress plugin Percent to Infograph 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

Sellacious eCommerce cross-site scripting vulnerability

Sellacious eCommerce is an e-commerce platform software developed by the Sellacious company. Version 4.6 of Sellacious eCommerce contains a cross-site scripting vulnerability. This vulnerability arises from improper cleaning of input fields such as names, companies, and addresses in the Manage Yo...

ROS-20251203-17

Vulnerabilities in GLPI's computer hardware request, incident, and inventory system are related to insufficient cleansing of user-supplied data. Exploitation of the vulnerability could allow A remote attacker to use malicious code to steal recipient credentials mail...

WordPress plugin Share to Google Classroom 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

EUVD-2004-2402

Malware in sbrugna...

EUVD-2000-0944

Malware in sbrugna...

WordPress plugin Conference Scheduler 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Conference Scheduler plugin, which stems from insufficient input cleanup and output escaping of the className...

WordPress plugin Newsletter Subscriptions 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists i...

The vulnerability of the upgrade_filter_asp function in D-Link DI-8300 router microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the upgradefilterasp function in D-Link DI-8300 router microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands via GET requests...

Zabbix 安全漏洞

Zabbix is an open source monitoring system from Zabbix. The system supports network monitoring, server monitoring, cloud monitoring and application monitoring. A security vulnerability exists in Zabbix that stems from a failure to effectively clean fields, leading to blind time-based SQL injectio...

The vulnerability of the sssctl command in the access control service allows attackers to gain access to sensitive data, compromise its integrity, and cause service failures.

The vulnerability of the sssctl command in the access control service, which manages access to remote directories and the SSSD authentication mechanism, is related to the lack of measures for input data cleansing. Exploiting this vulnerability could allow a malicious actor to gain access to...

The vulnerability of the Variant Management component in the SAP UI5 software platform, related to the lack of measures for cleaning incoming data, allows attackers to execute cross-site scripting attacks (Stored XSS).

The vulnerability of the Grantor Management component in the SAP CRM ABAP integration module for managing customer relationships is related to the lack of measures to cleanse input data. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks Stored XSS...

The vulnerability of the Grantor Management component in the SAP CRM ABAP integration module for managing customer relationships, related to the lack of measures to cleanse input data, allows attackers to execute cross-site scripting attacks.

The vulnerability of the Grantor Management component in the SAP CRM ABAP integration module for managing customer relationships exists due to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

Moodle 跨站脚本漏洞

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A security vulnerability exists in Moodle, which stems from insufficient cleansing of user-supplied data in blog searches, and which ca...