11 matches found
phpMyFAQ 跨站脚本漏洞
phpMyFAQ is a multilingual, fully database-driven FAQ system developed by Thorsten Rinne. Versions of phpMyFAQ prior to 4.1.2 contained a cross-site scripting vulnerability. This vulnerability stemmed from the fact that the endpoints for creating and updating FAQs bypassed cleanup mechanisms...
CVE-2026-3321 Authorization Bypass in ON24 Q&A chat
A vulnerability of authorization bypass through user-controlled key in the 'console-survey/api/v1/answer/EVENTID/TIMESTAMP/' endpoint. Exploiting this vulnerability would allow an unauthenticated attacker to enumerate event IDs and obtain the complete Q&A history. This publicly exposed data may...
CVE-2024-2232 Himer - Social Questions and Answers < 2.1.3 - CSRF While Sending the Invites
The lacks CSRF checks allowing a user to invite any user to any group including private groups...
CVE-2024-2233 Himer - Social Questions and Answers < 2.1.1 - Multiple CSRF on the Group Section
The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks. These include declining and accepting group invitations or leaving a group...
WordPress YITH WooCommerce Questions and Answers plugin <=1.1.9 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability
Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Questions and Answers plugin versions =1.1.9. Solution Update the WordPress YITH WooCommerce Questions and Answers plugin to the latest available version at least 1.2.0...
XSS Vulnerability at JEESNS Q&A Service
JEESNS is an open source social management system developed on the JAVA enterprise level platform. JEESNS questions and answers at the existence of XSS vulnerability , an attacker can exploit the vulnerability to inject arbitrary Web script or HTML...
Clone Of Oddee Script 1.1.3 SQL Injection
Vulnerability: SQL Injection Date: 15.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: Questions and Answers Script V1.1.3 Script Buy Now: http://www.scriptfolder.com/cool-planet-clone-of-oddee/ Author: Ihsan Sencan Author Web: http://ihsan.net Mail : ihsanbeygirihsannoktanet SQ...
Questions and Answers Script 1.1.3 - SQL Injection Vulnerability
Exploit for php platform in category web applications Vulnerability: SQL Injection Date: 15.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: Questions and Answers Script V1.1.3 Script Buy Now: http://www.scriptfolder.com/questions-and-answers/ Author: Ihsan Sencan Author Web:...
Questions and Answers Script 1.1.3 - id SQL Injection
Questions and Answers Script 1.1.3 - id SQL Injection Vulnerability: SQL Injection Date: 15.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: Questions and Answers Script V1.1.3 Script Buy Now: http://www.scriptfolder.com/questions-and-answers/ Author: Ihsan Sencan Author Web:...
Clone of Oddee Script 1.1.3 - SQL Injection
Clone of Oddee Script 1.1.3 - SQL Injection Vulnerability: SQL Injection Date: 15.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: Questions and Answers Script V1.1.3 Script Buy Now: http://www.scriptfolder.com/cool-planet-clone-of-oddee/ Author: Ihsan Sencan Author Web:...
Clone of Oddee Script 1.1.3 - SQL Injection
Vulnerability: SQL Injection Date: 15.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: Questions and Answers Script V1.1.3 Script Buy Now: http://www.scriptfolder.com/cool-planet-clone-of-oddee/ Author: Ihsan Sencan Author Web: http://ihsan.net Mail : ihsanbeygirihsannoktanet SQ...