3948 matches found
CVE-2020-36553
Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Areafoodtype field to /dashboard/menu-list.php...
CVE-2020-36552
Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Made field to /dashboard/menu-list.php...
CVE-2020-36551
Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Item Name field to /dashboard/menu-list.php...
Cross site scripting
Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Item Name field to /dashboard/menu-list.php...
CVE-2020-36551
Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Item Name field to /dashboard/menu-list.php...
CVE-2020-36552
Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Made field to /dashboard/menu-list.php...
SourceCodester Multi Restaurant Table Reservation System 跨站脚本漏洞
SourceCodester Multi Restaurant Table Reservation System is a multi-restaurant table reservation system. version 1.0 of SourceCodester Multi Restaurant Table Reservation System is vulnerable to a cross-site scripting vulnerability. An attacker can exploit this vulnerability to conduct cross-site...
SourceCodester Multi Restaurant Table Reservation System 跨站脚本漏洞
SourceCodester Multi Restaurant Table Reservation System is a multi-restaurant table reservation system. version 1.0 of SourceCodester Multi Restaurant Table Reservation System is vulnerable to a cross-site scripting vulnerability. An attacker can exploit this vulnerability to conduct cross-site...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10057-1 Rating: important References: Cross-References: CVE-2022-2007 CVE-2022-2008 CVE-2022-2010 CVE-2022-2011 CVE-2022-2294 Affected Products: openSUSE Leap 15.3:NonFree openSUSE Leap 15.4:NonFree An update th...
Remote Code Execution
snipe/snipe-it is vulnerable to remote code execution. The vulnerability exists in the Select User function under the People Menu component which allows an attacker with admin privileges to inject remote code to a user via maliciously crafted pdf files...
GHSA-XWQX-X38C-CW95 Snipe-IT 6.0.2 vulnerable to Cross-site Scripting
An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...
Snipe-IT 6.0.2 vulnerable to Cross-site Scripting
An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...
CVE-2022-32061
An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...
CVE-2022-32061
An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...
Design/Logic Flaw
An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...
CVE-2022-32061
An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...
CVE-2022-32061
CVE-2022-32061 affects Snipe-IT v6.0.2: the vulnerability is an arbitrary file upload in the Select User function under the People Menu component, enabling an attacker to execute arbitrary code via a crafted file. The connected sources confirm the affected product and the basic impact but do not ...
CVE-2021-40956
LaiKetui v3.5.0 has SQL injection in the background through the menu management function, and sensitive data can be obtained...
CVE-2021-40956
LaiKetui v3.5.0 has SQL injection in the background through the menu management function, and sensitive data can be obtained...
Sql injection
LaiKetui v3.5.0 has SQL injection in the background through the menu management function, and sensitive data can be obtained...