14 matches found
Cross-site Scripting (XSS)
Piranha is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper sanitization of user-supplied content in Markdown blocks within the /manager/pages component, which allows an attacker to inject and execute arbitrary web scripts or HTML...
CVE-2026-1421
A vulnerability has been found in code-projects Online Examination System 1.0. Affected is an unknown function of the component Add Pages. Such manipulation leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used...
CVE-2026-1421
A vulnerability has been found in code-projects Online Examination System 1.0. Affected is an unknown function of the component Add Pages. Such manipulation leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used...
CVE-2026-1421
A vulnerability has been found in code-projects Online Examination System 1.0. Affected is an unknown function of the component Add Pages. Such manipulation leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-61413
A stored cross-site scripting XSS vulnerability in the /manager/pages component of Piranha CMS v12.0 allows attackers to execute arbitrary web scripts or HTML via creating a page and injecting a crafted payload into the Markdown blocks...
CVE-2025-61413
A stored cross-site scripting XSS vulnerability in the /manager/pages component of Piranha CMS v12.0 allows attackers to execute arbitrary web scripts or HTML via creating a page and injecting a crafted payload into the Markdown blocks...
CVE-2025-61413
A stored cross-site scripting XSS vulnerability in the /manager/pages component of Piranha CMS v12.0 allows attackers to execute arbitrary web scripts or HTML via creating a page and injecting a crafted payload into the Markdown blocks...
EUVD-2025-21049
Malicious code in bioql PyPI...
CVE-2025-28243
An issue in Alteryx Server v.2023.1.1.460 allows HTML injection via a crafted script to the pages component...
Alteryx Server 跨站脚本漏洞
Alteryx Server is a cloud-hosted or self-hosted application from Alteryx, Inc. for publishing, sharing and executing workflows. A security vulnerability exists in Alteryx Server version 2023.1.1.460, which stems from the pages component that may allow HTML injection via specially crafted scripts...
FUEL CMS 安全漏洞
FUEL CMS is a Content Management System CMS based on the Codelgniter framework by David McReynolds, an individual developer. A security vulnerability exists in FUEL CMS v1.5.2, which stems from vulnerability to cross-site scripting attacks that can be exploited to achieve elevation of privilege b...
PT-2024-4033 · Cu Solutions · Cu Solutions Group Content Management System
Name of the Vulnerable Software and Affected Versions: CU Solutions Group CUSG Content Management System CMS versions prior to 7.75 Description: The issue is related to a Blind SQL Injection vulnerability in the pages.php component, which can be exploited by a remote attacker to execute arbitrary...
Joomla! Component com_PHP 0.1 - Local File Inclusion
Joomla Custom PHP Pages Component LFI Vulnerability ===================================================== - Discovered by : Chip D3 Bi0s - Email : [email protected] - Date : 2010-05-11 - Where : From Remote ---------------------------------- Affected software description Application : Joomla...
Mambo User Home Pages Component <= 0.5 Remote Include Vulnerability
No description provided by source. Kurdish Security Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx : kurdishsniper,netqurd,flot,azad,darki,B3g0k,jubni,milex,fearless,kha,kca a...