5077 matches found
Bitweaver Cross-Site Scripting Vulnerability (CNVD-2021-22576)
Bitweaver is a free, open source web application framework and content management system. A cross-site scripting vulnerability exists in Bitweaver 3.1.0. A remote attacker can exploit this vulnerability to inject JavaScript via the /users/index.php URI...
Bitweaver cross-site scripting vulnerability (CNVD-2021-22575)
Bitweaver is a free, open source web application framework and content management system. A cross-site scripting vulnerability exists in Bitweaver 3.1.0. A remote attacker can exploit this vulnerability to inject JavaScript via the /users/admin/permissions.php URI...
Bitweaver cross-site scripting vulnerability (CNVD-2021-22574)
Bitweaver is a free, open source web application framework and content management system. A cross-site scripting vulnerability exists in Bitweaver 3.1.0. A remote attacker can exploit this vulnerability to inject JavaScript via the /users/myimages.php URI...
NOKIA NetAct 18A 跨站脚本漏洞
Nokia NetAct 18A is an application system from NOKIA, Finland. It provides best-in-class applications for seamless day-to-day network operations, including configuration management, monitoring and software management. A security vulnerability exists in Nokia NetAct 18A that allows an attacker to...
CVE-2021-29030
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/index.php URI...
CVE-2021-29029
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/editpersonalpage.php URI...
CVE-2021-29032
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/preferences.php URI...
CVE-2021-29025
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/myimages.php URI...
CVE-2021-29026
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/permissions.php URI...
CVE-2021-29033
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/editgroup.php URI...
Cross site scripting
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/index.php URI...
Cross site scripting
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/usersimport.php URI...
Cross site scripting
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/admin/editgroup.php URI...
CVE-2021-29029
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/editpersonalpage.php URI...
CVE-2021-29029
Bitweaver 3.1.0 is affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to inject JavaScript through the /users/edit_personal_page.php URI. Root cause is unrelated input handling in that page, per multiple CVE references. Impact is variable depending on context but ...
CVE-2021-29027
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/index.php URI...
CVE-2021-29027
CVE-2021-29027 describes a cross-site scripting (XSS) vulnerability in Bitweaver v3.1.0 , where an attacker can inject JavaScript via the /users/index.php URI. The connected documents confirm Bitweaver 3.1.0 is affected and show no explicit details on the root cause, exploit conditions, or availa...
CVE-2021-29026
CVE-2021-29026 is a reported cross-site scripting (XSS) vulnerability in Bitweaver 3.1.0, exploitable via the /users/admin/permissions.php URI. The affected component is Bitweaver’s web application, with the underlying issue described as an XSS flaw that allows remote attackers to inject JavaScri...
CVE-2021-29025
A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/myimages.php URI...
DynPG Cross-Site Scripting Vulnerability (CNVD-2021-22968)
DynPG is a free open source software for managing web content and modules while focusing on business process automation. A cross-site scripting vulnerability exists in DynPG 4.9.2. A remote attacker can exploit this vulnerability by injecting JavaScript via the "query" parameter...