48 matches found
RiteCMS 3.0.0 - Cross-site Scripting
RiteCMS v3.0.0 contains a reflected XSS caused by unsanitized input in the mainmenu/editsection component, letting attackers execute arbitrary scripts in the context of the victim's browser. id: CVE-2024-28623 info: name: RiteCMS 3.0.0 - Cross-site Scripting author: 0xAkoko severity: medium...
EUVD-2023-23809
Malicious code in bioql PyPI...
📄 RiteCMS 3.0.0 Cross Site Scripting
RiteCMS versions 3.0.0 and below suffer from a cross site scripting vulnerability. Exploit Title: RiteCMS 3.0.0 – Reflected Cross-Site Scripting XSS Google Dork: N/A Date: 2024-08-12 Exploit Author: GURJOT SINGH Vendor Homepage: https://ritecms.com/ Software Link:...
RiteCMS 3.0.0 - Reflected Cross Site Scripting (XSS)
Exploit Title: RiteCMS 3.0.0 – Reflected Cross-Site Scripting XSS Google Dork: N/A Date: 2024-08-12 Exploit Author: GURJOT SINGH Vendor Homepage: https://ritecms.com/ Software Link: https://github.com/handylulu/RiteCMS/releases/download/V3.0.0/ritecms.v3.0.0.zip Version: Steps: 1. Log in or...
CVE-2023-1575
The Mega Main Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via some of its settings parameters in versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...
CVE-2024-11097
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulation leads to infinite loop. Attacking locally is a requirement. The exploit has been disclosed to t...
CVE-2024-11097
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulation leads to infinite loop. Attacking locally is a requirement. The exploit has been disclosed to t...
CVE-2024-11097
SourceCodester Student Record Management System 1.0 is affected, specifically the Main Menu component. The issue allows an infinite loop caused by manipulation, with exploitation requiring local access. Public exploits have been disclosed historically across multiple sources, and remediation guid...
CVE-2024-11097 SourceCodester Student Record Management System Main Menu infinite loop
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulation leads to infinite loop. Attacking locally is a requirement. The exploit has been disclosed to t...
CVE-2024-11097 SourceCodester Student Record Management System Main Menu infinite loop
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulation leads to infinite loop. Attacking locally is a requirement. The exploit has been disclosed to t...
PT-2024-16758 · Sourcecodester · Sourcecodester Record Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Student Record Management System version 1.0 SourceCodester versions prior to the latest update Description: A vulnerability has been found in the SourceCodester Student Record Management System, affecting the Main Menu...
RiteCMS Cross-Site Scripting Vulnerability (CNVD-2025-21552)
RiteCMS is an open source content management system based on PHP and SQLite. RiteCMS suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the component mainmenu/editsection, which can be exploited by an attacker to...
RiteCMS 跨站脚本漏洞
RiteCMS is an open source content management system based on PHP and SQLite. RiteCMS suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the component mainmenu/editsection, which can be exploited by an attacker to...
PT-2024-22496 · Ritecms · Ritecms
Name of the Vulnerable Software and Affected Versions: RiteCMS version 3.0.0 Description: A cross-site scripting XSS issue was found in the main menu/edit section component. This allows for potential XSS attacks. Recommendations: For RiteCMS version 3.0.0, consider disabling access to the main...
RiteCMS Cross-Site Scripting Vulnerability (CNVD-2026-05345)
RiteCMS is an open source content management system based on php and sqlite. RiteCMS suffers from a cross-site scripting vulnerability that can be exploited by an attacker to execute arbitrary code in the Main Menu Items of the Administration Menu via a specially crafted payload...
CVE-2023-43878
Rite CMS 3.0 has Multiple Cross-Site scripting XSS vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu...
Cross site scripting
Rite CMS 3.0 has Multiple Cross-Site scripting XSS vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu...
PT-2023-29023 · Ritecms · Ritecms
Name of the Vulnerable Software and Affected Versions: Rite CMS version 3.0 Description: The issue allows attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu. This is a result of Multiple Cross-Site scripting XSS vulnerabilities...
RiteCMS Cross-Site Scripting Vulnerability
RiteCMS is a website CMS. A cross-site scripting vulnerability exists in RiteCMS version 3.0. An attacker can exploit this vulnerability to execute arbitrary code in the Main Menu Items of the Administration Menu via a specially crafted payload...
CVE-2023-1575
The Mega Main Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via some of its settings parameters in versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...