CVE-2021-25089

The UpdraftPlus WordPress Backup Plugin WordPress plugin before 1.16.69 does not sanitise and escape the updraftrestore parameter before outputting it back in the Restore page, leading to a Reflected Cross-Site Scripting...

Cross site scripting

The UpdraftPlus WordPress Backup Plugin WordPress plugin before 1.16.69 does not sanitise and escape the updraftrestore parameter before outputting it back in the Restore page, leading to a Reflected Cross-Site Scripting...

CVE-2021-43695

issabelPBX version 2.11 is affected by a Cross Site Scripting XSS vulnerability. In file page.backuprestore.php, the exit function will terminate the script and print the message to the user. The message will contain $REQUEST without sanitization, then there is a XSS vulnerability...

IssabelPbx 跨站脚本漏洞

IssabelPbx is an open source Gui Graphical User Interface from the Issabel Foundation. It is used to control and manage Asterisk Pbx. Issabel issabelPBX suffers from a cross-site scripting vulnerability that originates in the file page.backuprestore.php, where the exit function will terminate the...