Lucene search
K

37 matches found

CNNVD
CNNVD
added 2022/04/04 12:0 a.m.6 views

PKP Vendor Open Journal System 跨站脚本漏洞

PKP Vendor Open Journal System is an open journal system organized by PKP. It is used to manage and publish academic journals. A cross-site scripting vulnerability exists in PKP Vendor Open Journal System versions v2.4.8 through v3.3.8, which can be exploited by an attacker via a specially crafte...

6.1CVSS6AI score0.00973EPSS
Exploits0References3
CNVD
CNVD
added 2021/04/01 12:0 a.m.1 views

SQL Injection Vulnerability in Sancai Journal Acquisition and Editing System of Xi'an Sancai Technology Industry Co.

Xi'an Sancai Technology Industry Co., Ltd. is a high-tech enterprise composed of a team of experts from the fields of scientific and technical journals, literature database management, and software design and engineering. SQL injection vulnerability exists in Sancai Journal Acquisition and Editin...

7.5AI score
Exploits0
CNVD
CNVD
added 2020/11/17 12:0 a.m.1 views

XSS Vulnerability in the Collaborative Journal Acquisition and Editing System of China Academic Journals (CD-ROM Version) Electronic Magazine Agency Ltd.

The collaborative editorial system of periodicals is a comprehensive service platform for the whole process of periodicals collection, editing, reviewing, proofreading and distribution. An XSS vulnerability exists in the collaborative journal collection and editing system of China Academic Journa...

6.1AI score
Exploits0
CNVD
CNVD
added 2019/07/27 12:0 a.m.1 views

Arbitrary Password Reset Vulnerability in Sancai Journal Acquisition and Editing System

Sancai Journal Acquisition and Editing System is a networked office platform. There is an arbitrary password reset vulnerability in Sancai Journal Acquisition and Editing System, which can be exploited by an attacker to reset any user's password...

7.1AI score
Exploits0
CNVD
CNVD
added 2019/03/27 12:0 a.m.1 views

Arbitrary File Read Vulnerability in Sancai Journal Acquisition and Editing System

Sancai Journal Acquisition and Editing System is a networked office platform. Sancai Journal Acquisition and Editing System suffers from an arbitrary file read vulnerability, which can be exploited by an attacker to read arbitrary files...

6.9AI score
Exploits0
CNVD
CNVD
added 2019/02/28 12:0 a.m.1 views

SQL Injection Vulnerability in Sancai Journal Acquisition and Editing System

Sancai Journal Acquisition and Editing System is a networked office platform. SQL injection vulnerability exists in Sancai Journal Editorial System. An attacker can exploit the vulnerability to obtain sensitive information from the database...

7.7AI score
Exploits0
CNVD
CNVD
added 2018/06/14 12:0 a.m.2 views

Public Knowledge Project Open Journal System Cross-Site Scripting Vulnerability

Public Knowledge Project PKP Open Journal System OJS is a journal management and publishing system. A cross-site scripting vulnerability exists in PKP OJS version 3.X prior to 3.1.1-2, which stems from the program failing to escape the '$authors' parameter. A remote attacker can use the '$authors...

6.1CVSS6AI score0.01796EPSS
Exploits0References1
NVD
NVD
added 2018/06/12 11:29 a.m.16 views

CVE-2018-12229

Cross-site scripting XSS vulnerability in Public Knowledge Project PKP Open Journal System OJS 3.0.0 to 3.1.1-1 allows remote attackers to inject arbitrary web script or HTML via the templates/frontend/pages/search.tpl parameter aka the By Author field...

6.1CVSS6.1AI score0.01796EPSS
Exploits0References4
OSV
OSV
added 2018/06/12 11:29 a.m.18 views

CVE-2018-12229

Cross-site scripting XSS vulnerability in Public Knowledge Project PKP Open Journal System OJS 3.0.0 to 3.1.1-1 allows remote attackers to inject arbitrary web script or HTML via the templates/frontend/pages/search.tpl parameter aka the By Author field...

6.1CVSS6.2AI score
Exploits0References4
Cvelist
Cvelist
added 2018/06/12 11:0 a.m.19 views

CVE-2018-12229

Cross-site scripting XSS vulnerability in Public Knowledge Project PKP Open Journal System OJS 3.0.0 to 3.1.1-1 allows remote attackers to inject arbitrary web script or HTML via the templates/frontend/pages/search.tpl parameter aka the By Author field...

6.1AI score0.01796EPSS
Exploits0References4
CVE
CVE
added 2018/06/12 11:0 a.m.46 views

CVE-2018-12229

The CVE-2018-12229 issue affects PKP Open Journal System (OJS) versions 3.0.0 through 3.1.1-1. The root cause is a cross-site scripting flaw in the templates/frontend/pages/search.tpl, specifically via the By Author field, allowing remote attackers to inject arbitrary web script or HTML. Some sou...

6.1CVSS6AI score0.01796EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2018/03/05 12:0 a.m.1 views

SQL Injection Vulnerability in Sancai Journal Acquisition and Editing System

Sancai Journal Acquisition and Editing System is a networked office platform. SQL injection vulnerability exists in Sancai Journal Editorial System. An attacker can exploit the vulnerability to obtain sensitive information from the database...

7.7AI score
Exploits0
CNVD
CNVD
added 2015/09/15 12:0 a.m.2 views

SQL injection vulnerability in FrameSelect.aspx page Type parameter of Nanjing Jenohan Software Periodicals and Magazines System.

Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. There exists a second SQL injection vulnerability in...

7.7AI score
Exploits0References1
CNVD
CNVD
added 2015/07/06 12:0 a.m.4 views

SQL injection vulnerability in the owner parameter of Nanjing Jenohan Journal Submission System.

Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. A SQL injection vulnerability exists in the owner paramet...

7.7AI score
Exploits0References1
CNVD
CNVD
added 2015/07/06 12:0 a.m.2 views

SQL Injection Vulnerability in ItemNo Parameter of Nanjing GenoHan Journal Submission System

Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. There is a SQL injection vulnerability in the ItemNo...

7.7AI score
Exploits0References1
CNVD
CNVD
added 2015/07/06 12:0 a.m.2 views

SQL Injection Vulnerability in Searchid Parameter of Nanjing Jenohan Journal Submission System.

Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. An SQL injection vulnerability exists in the searchid...

7.7AI score
Exploits0References1
CNVD
CNVD
added 2015/06/03 12:0 a.m.1 views

Name parameter SQL injection vulnerability in Wipro's Chinese scientific and technical journal system/index.asp page

Ltd, formerly known as Database Research Center of Chongqing Branch of China Science and Technology Information Research Institute, is a Chinese periodical database research organization in China. The name parameter SQL injection vulnerability in Wipro's Chinese scientific and technical journal...

7.6AI score
Exploits0References1
Rows per page
Query Builder