25 matches found
EUVD-2023-39852
Malicious code in bioql PyPI...
EUVD-2022-44032
Malicious code in bioql PyPI...
CVE-2023-35859
A Reflected Cross-Site Scripting XSS vulnerability in the blog function of Modern Campus - Omni CMS 2023.1 allows a remote attacker to inject arbitrary scripts or HTML via multiple parameters...
CVE-2022-40766
Modern Campus Omni CMS formerly OU Campus 10.2.4 allows login-page SQL injection via a '" OR 1 = 1 -- - ,...
CVE-2023-35859
A Reflected Cross-Site Scripting XSS vulnerability in the blog function of Modern Campus - Omni CMS 2023.1 allows a remote attacker to inject arbitrary scripts or HTML via multiple parameters...
CVE-2023-35858
XPath Injection vulnerabilities in the blog and RSS functions of Modern Campus - Omni CMS 2023.1 allow a remote, unauthenticated attacker to obtain application information...
CVE-2023-35860
A Directory Traversal vulnerability in Modern Campus - Omni CMS 2023.1 allows a remote, unauthenticated attacker to enumerate file system information via the dir parameter to listing.php or rss.php...
CVE-2023-35859
A Reflected Cross-Site Scripting XSS vulnerability in the blog function of Modern Campus - Omni CMS 2023.1 allows a remote attacker to inject arbitrary scripts or HTML via multiple parameters...
CVE-2023-35858
XPath Injection vulnerabilities in the blog and RSS functions of Modern Campus - Omni CMS 2023.1 allow a remote, unauthenticated attacker to obtain application information...
Modern Campus Omni CMS Security Vulnerability
Modern Campus Omni CMS is a web content management system from Modern Campus, Inc. It is used by colleges and universities to manage their websites. A security vulnerability exists in Modern Campus Omni CMS version 2023.1, which stems from an XPath injection vulnerability in the blog and RSS...
Modern Campus Omni CMS Security Vulnerability
Modern Campus Omni CMS is a web content management system from Modern Campus, Inc. It is used by colleges and universities to manage their websites. A security vulnerability exists in Modern Campus Omni CMS version 2023.1, which stems from a Reflected Cross-Site Scripting XSS vulnerability in the...
CVE-2023-35860
A Directory Traversal vulnerability in Modern Campus - Omni CMS 2023.1 allows a remote, unauthenticated attacker to enumerate file system information via the dir parameter to listing.php or rss.php...
CVE-2023-35858
Summary: CVE-2023-35858 affects Modern Campus – Omni CMS 2023.1. The vulnerability is an XPath Injection in the blog and RSS functions that allows a remote, unauthenticated attacker to obtain application information. What’s affected: Modern Campus Omni CMS version 2023.1; vulnerable code paths ar...
CVE-2023-35860
A Directory Traversal vulnerability in Modern Campus - Omni CMS 2023.1 allows a remote, unauthenticated attacker to enumerate file system information via the dir parameter to listing.php or rss.php...
CVE-2023-35860
CVE-2023-35860 affects Modern Campus Omni CMS 2023.1. A directory traversal vulnerability allows remote, unauthenticated attackers to enumerate file system information via the dir parameter to listing.php or rss.php. The NVD entry and related sources describe the affected component and exposure, ...
Modern Campus Omni CMS Security Vulnerability
Modern Campus Omni CMS is a web content management system from Modern Campus, Inc. It is used by colleges and universities to manage their websites. A security vulnerability exists in Modern Campus Omni CMS version 2023.1, which stems from a directory traversal vulnerability that could allow an...
CVE-2023-35858
XPath Injection vulnerabilities in the blog and RSS functions of Modern Campus - Omni CMS 2023.1 allow a remote, unauthenticated attacker to obtain application information...
CVE-2022-40766
Modern Campus Omni CMS formerly OU Campus 10.2.4 allows login-page SQL injection via a '" OR 1 = 1 -- - ,...
CVE-2022-40766
Modern Campus Omni CMS formerly OU Campus 10.2.4 allows login-page SQL injection via a '" OR 1 = 1 -- - , ?php' substring...
CVE-2022-40766
Modern Campus Omni CMS formerly OU Campus 10.2.4 allows login-page SQL injection via a '" OR 1 = 1 -- - , ?php' substring...