EUVD-2023-3241

Malicious code in bioql PyPI...

CVE-2023-49487

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

JFinalCMS Cross-Site Scripting Vulnerability (CNVD-2023-9769208)

JFinalCMS is a content management system. JFinalCMS v5.0.0 version exists cross-site scripting vulnerability, the vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the navigation management department, an attacker exploits the vulnerability by injectin...

Cross-site Scripting in JFinalCMS

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

GHSA-M42V-QV3C-H6J7 Cross-site Scripting in JFinalCMS

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

CVE-2023-49487

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

CVE-2023-49487

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

CVE-2023-49487

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

Cross site scripting

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

PT-2023-31240 · Jfinalcms · Jfinalcms

Name of the Vulnerable Software and Affected Versions: JFinalCMS version 5.0.0 Description: A cross-site scripting XSS issue was found in the navigation management department of the software. This type of issue allows attackers to inject malicious scripts into content from otherwise trusted...

CVE-2023-49487

JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the navigation management department...

JFinalCMS 安全漏洞

JFinalCMS is a content management system. JFinalCMS v5.0.0 version exists cross-site scripting vulnerability, the vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the navigation management department, an attacker exploits the vulnerability by injectin...

CVE-2023-49487

CVE-2023-49487 concerns a cross-site scripting (XSS) vulnerability in JFinalCMS v5.0.0, located in the navigation management department. The root cause is insufficient filtering/escaping of user-supplied data, enabling arbitrary Web script or HTML execution. The CVSSv3.1 base score is 5.4 (Medium...

SQL Injection Vulnerability in youke365 v1.2.0

youke365 is an open source navigation management system. youke365 v1.2.0 suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

Set sail for the enterprise built Station system cookie injection vulnerability-vulnerability warning-the black bar safety net

Sail mechanical and electrical equipment enterprise built Station system, The system do businesses stand dynamic templates, code interface separation, is a set of website user with no technical threshold, simple operation, convenient maintenance, powerful, secure and reliable website tool. Websit...