73 matches found
MAL-2024-7954 Malicious code in ember-unified-navbar-360 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca611162af2d36d894266f588a4b191ac6301ab46e3e99e9efcc6bcbf7fd1803 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-2519
A vulnerability was found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. It has been classified as problematic. Affected is an unknown function of the file navbar.php. The manipulation of the argument id leads to cross site scripting. It is possible to launch the attack remotely...
Online-College-Event-Hall-Reservation-System Cross-Site Scripting Vulnerability
Online-College-Event-Hall-Reservation-System is an online college event hall reservation system by Magesh K individual developer. Designed to automate the hall booking process to eliminate manual logging and increase efficiency. A cross-site scripting vulnerability exists in...
PT-2024-20805 · Unknown · Magesh-K21 Online-College-Event-Hall-Reservation-System
Name of the Vulnerable Software and Affected Versions: MAGESH-K21 Online-College-Event-Hall-Reservation-System version 1.0 Description: A problematic issue was found in the system, affecting an unknown function of the file navbar.php. The manipulation of the id argument leads to cross-site...
CVE-2023-48730
A cross-site scripting xss vulnerability exists in the navbarMenuAndLogo.php user name functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this vulnerabilit...
Cross site scripting
A cross-site scripting xss vulnerability exists in the navbarMenuAndLogo.php user name functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this vulnerabilit...
CVE-2023-48730
A cross-site scripting xss vulnerability exists in the navbarMenuAndLogo.php user name functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this vulnerabilit...
CVE-2023-40932
A Cross-site scripting XSS vulnerability in Nagios XI version 5.11.1 and below allows authenticated attackers with access to the custom logo component to inject arbitrary javascript or HTML via the alt-text field. This affects all pages containing the navbar including the login page which means t...
Cross site scripting
A Cross-site scripting XSS vulnerability in Nagios XI version 5.11.1 and below allows authenticated attackers with access to the custom logo component to inject arbitrary javascript or HTML via the alt-text field. This affects all pages containing the navbar including the login page which means t...
CVE-2023-27211
A cross-site scripting XSS vulnerability in /admin/navbar.php of Online Pizza Ordering System 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the page parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in /kruxton/navbar.php of Best POS Management System 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the page parameter...
Best POS Management System 跨站脚本漏洞
Best pos management system is a best pos management system by Mayuri K. Personal developer. A security vulnerability exists in Best POS Management System version 1.0, which originates from a cross-site scripting XSS vulnerability in /kruxton/navbar.php, which can be exploited by an attacker to...
Online Pizza Ordering System 跨站脚本漏洞
Online Pizza Ordering System is an online pizza ordering system by Carlo Montero, a personal developer. A security vulnerability exists in Online Pizza Ordering System version 1.0, which originates from a cross-site scripting XSS vulnerability in /admin/navbar.php, which can be exploited by an...
CVE-2023-24194
Online Food Ordering System v2 was discovered to contain a cross-site scripting XSS vulnerability via the page parameter in navbar.php...
CVE-2023-24194
Online Food Ordering System v2 was discovered to contain a cross-site scripting XSS vulnerability via the page parameter in navbar.php...
PT-2023-19469 · Unknown · Online Food Ordering System
Name of the Vulnerable Software and Affected Versions: Online Food Ordering System version v2 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability is present in the page parameter in the navbar.php file. Cross-site scripting XSS is a type of security...
PT-2022-25072 · Frappe · Frappe
Name of the Vulnerable Software and Affected Versions: Frappe affected versions not specified Description: A problematic issue was found in Frappe, affecting some unknown functionality of the file frappe/templates/includes/navbar/navbar search.html of the component Search. The manipulation of the...
CVE-2022-32996
The django-navbar-client package of v0.9.50 to v1.0.1 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...
CVE-2022-32996
The django-navbar-client package of v0.9.50 to v1.0.1 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...
CVE-2022-32996
The django-navbar-client package of v0.9.50 to v1.0.1 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...