29 matches found
EUVD-2024-33015
Malicious code in bioql PyPI...
EUVD-2024-33017
Malicious code in bioql PyPI...
EUVD-2024-33016
Malicious code in bioql PyPI...
EUVD-2024-33014
Malicious code in bioql PyPI...
CVE-2024-10287
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ForgotPassword, parameter ListName...
CVE-2024-10289
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName...
CVE-2024-10287
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ForgotPassword, parameter ListName...
CVE-2024-10288
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/SubscribeToList, parameter ListName...
CVE-2024-10288
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/SubscribeToList, parameter ListName...
CVE-2024-10289
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName...
CVE-2024-10286
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /testmail/index.php, parameter to...
CVE-2024-10286
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /testmail/index.php, parameter to...
CVE-2024-10289 Cross-Site Scripting (XSS) vulnerability in LocalServer
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName...
CVE-2024-10289 Cross-Site Scripting (XSS) vulnerability in LocalServer
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName...
CVE-2024-10288 Cross-Site Scripting (XSS) vulnerability in LocalServer
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/SubscribeToList, parameter ListName...
CVE-2024-10288 Cross-Site Scripting (XSS) vulnerability in LocalServer
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/SubscribeToList, parameter ListName...
CVE-2024-10288
CVE-2024-10288 concerns LocalServer 1.0.9 with a Cross-Site Scripting (XSS) vulnerability that allows a remote attacker to craft a query to an authenticated user and potentially steal session details via the /mlss/SubscribeToList endpoint, specifically the ListName parameter. The connected docume...
CVE-2024-10287 Cross-Site Scripting (XSS) vulnerability in LocalServer
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ForgotPassword, parameter ListName...
CVE-2024-10287
CVE-2024-10287 describes a Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9. A remote attacker can craft a query to an authenticated user via the /mlss/ForgotPassword endpoint, abusing the ListName parameter to steal session details. The CVSS v3.1 base score is 6.1 (Medium), w...
CVE-2024-10287 Cross-Site Scripting (XSS) vulnerability in LocalServer
Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ForgotPassword, parameter ListName...