4 matches found
CVE-2022-50940 Knap Advanced PHP Login 3.1.3 Persistent Cross-Site Scripting via Name Parameter
Knap Advanced PHP Login 3.1.3 contains a persistent cross-site scripting vulnerability that allows remote attackers to inject malicious script code in the name parameter. Attackers can exploit the vulnerability to execute arbitrary scripts in users and activity log backend modules, potentially...
CVE-2022-50940
CVE-2022-50940 affects Knap Advanced PHP Login 3.1.3 with a persistent cross-site scripting vulnerability exploitable via the name parameter. Attackers could potentially inject script code into user-facing flows and activity logs, with possible session hijacking and persistent phishing as describ...
CVE-2022-50940 Knap Advanced PHP Login 3.1.3 Persistent Cross-Site Scripting via Name Parameter
Knap Advanced PHP Login 3.1.3 contains a persistent cross-site scripting vulnerability that allows remote attackers to inject malicious script code in the name parameter. Attackers can exploit the vulnerability to execute arbitrary scripts in users and activity log backend modules, potentially...
Knap Advanced PHP Login 跨站脚本漏洞
Knap Advanced PHP Login is an authentication system script developed by the Knap company. Version 3.1.3 of Knap Advanced PHP Login contains a cross-site scripting vulnerability. This vulnerability stems from a name parameter that allows for stored cross-site scripting, potentially leading to...