228 matches found
WordPress WPQA premium plugin <= 5.4 - Unauthenticated Private Message Disclosure vulnerability
Unauthenticated Private Message Disclosure vulnerability discovered by Veshraj Ghimire in WordPress WPQA premium plugin versions = 5.4. Solution Update the WordPress WPQA premium plugin to the latest available version at least 5.5...
WordPress WPQA - Builder forms Addon plugin < 5.2 - Private Message Disclosure via IDOR vulnerability
Private Message Disclosure via IDOR vulnerability discovered by Veshraj Ghimire in WordPress WPQA - Builder forms Addon plugin versions 5.2. Solution Update the WordPress WPQA - Builder forms Addon plugin to the latest available version at least 5.2...
Discourse Information Disclosure Vulnerability (CNVD-2022-07639)
Discourse is an open source community discussion platform. Discourse is vulnerable to an information disclosure vulnerability in which any private message containing a group exposes its title and participating users to users who do not have permission to access the private message. An attacker...
Rocket.Chat: API route chat.getThreadsList leaks private message content
Summary The /api/v1/chat.getThreadsList does not sanitize user inputs and can therefore leak private thread messages to unauthorized users via Mongo DB injection. Description The chat.getThreadsList API route is defined in app/api/server/v1/chat.jsL522-L572: javascript const rid, type, text =...
CVE-2021-41082
Discourse is a platform for community discussion. In affected versions any private message that includes a group had its title and participating user exposed to users that do not have access to the private messages. However, access control for the private messages was not compromised as users wer...
CVE-2021-41082
CVE-2021-41082 affects the Discourse platform. In affected versions, the title and participating users of a private message that includes a group could be exposed to users without access to that private message. The issue is an information-disclosure in group-private messages, not a full message-...
CVE-2021-41082 Private message title and participating users leaked in discourse
Discourse is a platform for community discussion. In affected versions any private message that includes a group had its title and participating user exposed to users that do not have access to the private messages. However, access control for the private messages was not compromised as users wer...
Discourse 信息泄露漏洞
Discourse is an open source community discussion platform. Discourse is vulnerable to an information disclosure vulnerability in which any private message containing a group exposes its title and participating users to users who do not have permission to access the private message. An attacker...
CVE-2020-19288
A stored cross-site scripting XSS vulnerability in the /localhost/u component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in a private message...
CVE-2020-19288
A stored cross-site scripting XSS vulnerability in the /localhost/u component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in a private message...
CVE-2021-32607
An issue was discovered in Smartstore aka SmartStoreNET through 4.1.1. Views/PrivateMessages/View.cshtml does not call HtmlUtils.SanitizeHtml on a private message...
CVE-2021-32607
An issue was discovered in Smartstore aka SmartStoreNET through 4.1.1. Views/PrivateMessages/View.cshtml does not call HtmlUtils.SanitizeHtml on a private message...
CVE-2021-30479
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the allpublicstreams API feature resulted in guest users being able to receive message traffic to public streams that should have been only accessible to members of the organization...
Design/Logic Flaw
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the allpublicstreams API feature resulted in guest users being able to receive message traffic to public streams that should have been only accessible to members of the organization...
Shopify: Stored XSS in private message
1.Open customer function https://mosuan-img-src-x.myshopify.com/admin/customers 2.Click on the customer's email address F625957 3.Click the sent message on the current page F625959 Impact admin...
MyBB < 1.8.21 Multiple Vulnerabilities
MyBB is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mybb:mybb"; ifdescription...
CVE-2019-12830
In MyBB before 1.8.21, an attacker can exploit a parsing flaw in the Private Message / Post renderer that leads to video BBCode persistent XSS to take over any forum account, aka a nested video MyCode issue...
WordPress: Mssing Authorization on Private Message replies (BuddyPress)
Description: Users can reply to private message threads which they are not participants of by changing the threadid parameter in the messagessendreply ajax action. This affects both the Legacy and Nouveau Template packs. Steps To Reproduce: 1. Login to your account 2. Send the following request...
WordPress: Stored XSS in Private Message component (BuddyPress)
Description: WordPress version: 5.0.3 BuddyPress version: 4.1.0 Users with accounts can send private messages containing rendered HTML to other uses, this includes being able to execute javascript code via elements such as scripts, iframe etc. The XSS is stored in the database and is triggered an...
Advanced Electron Forum Private Message Module Cross-Site Scripting Vulnerability
Advanced Electron Forum AEF is an online forum system written in PHP.Private Message is one of the personal information modules. A cross-site scripting vulnerability exists in the 'FTP Link' element of the Private Message module in AEF version 1.0.9, which originates from unfiltered content in th...