SITO CMS is vulnerable to xss vulnerability

Situ CMS is a self-developed website management system suitable for tourism website construction. An xss vulnerability exists in SITO CMS, which can be exploited by attackers to inject arbitrary web script or HTML...

DNN Cross-Site Scripting Vulnerability

DNN formerly known as DotNetNuke is a set of U.S. DNN by Microsoft support , based on the ASP.NET platform for open source content management system CMS. The system is easy to install , scalable , feature-rich and so on. DNN 9.1 version of the cross-site scripting vulnerability , remote attackers...

WeaselCMS Cross-Site Scripting Vulnerability (CNVD-2018-20069)

WeaselCMS is a lightweight content management system CMS written in PHP. A cross-site scripting vulnerability exists in WeaselCMS version 0.3.6, which stems from the program's failure to properly handle $SERVER'PHPSELF', and can be exploited by remote attackers to inject arbitrary web script or...

Salesforce RegistrationForm Cross-Site Scripting Vulnerability

Salesforce.com is an American cloud computing company based in San Francisco, California. A cross-site scripting vulnerability exists in Salesforce RegistrationForm, which could allow an attacker to deliver a manipulated email by injecting malicious script code...

WordPress Site Reviews Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL server set up a personal blog site. Site Reviews is used in one of the site reviews plugin. A cross-site scripting vulnerability exists in WordPress Site...

Zulip Server Cross-Site Scripting Vulnerability (CNVD-2018-08600)

Zulip Server is a set of open source group chat application written in Python based on the Django framework . frontend markdown processor is one of the front-end markdown markup language processor . A cross-site scripting vulnerability exists in the frontend markdown processor in Zulip Server...

McAfee Network Security Management Cross-Site Scripting Vulnerability

McAfee Network Security Management NSM is a suite of network security solutions from McAfee that enables real-time monitoring of deployed McAfee intrusion prevention systems across the network. A cross-site scripting vulnerability exists in the web interface of McAfee NSM. A remote attacker could...

IBM Financial Transaction Manager for Check Services Cross-Site Scripting Vulnerability

IBM Financial Transaction Manager for Check Services is a financial transaction manager from IBM USA that is used to monitor, track and report on financial payments and transactions. A cross-site scripting vulnerability exists in IBM Financial Transaction Manager for Check Services. A remote...

PHP Scripts Mall Single Theater Booking Cross-Site Request Forgery Vulnerability

PHP Scripts Mall Single Theater Booking is an open source theater script. A cross-site request forgery vulnerability exists in PHP Scripts Mall Single Theater Booking. A remote attacker can use the admin/sitesettings.php file to change sensitive settings on the user panel, or even inject web scri...

Apache Spark Cross-Site Scripting Vulnerability

Apache Spark is a large-scale data processing engine that supports acyclic data streams and in-memory computing from the Apache Software Foundation. A security vulnerability exists in Apache Spark versions prior to 2.2.0. The vulnerability can be exploited by an attacker to inject scripts by...

Apache NiFi Cross-Site Scripting Vulnerability (CNVD-2017-14424)

Apache NiFi is a system data flow automation solution. Apache NiFi suffers from a cross-site scripting vulnerability that allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to gain access to sensitive information or hijack user sessions...

Revive Adserver Cross-Site Scripting Vulnerability (CNVD-2017-05165)

Revive Adserver is an open source advertising management system from the Revive Adserver team. The system provides ad placement, ad space management, data statistics and other functions. A cross-site scripting vulnerability exists in Revive Adserver. A remote attacker can exploit this vulnerabili...

Malware Information Sharing Platform Cross-Site Scripting Vulnerability

MISP is an open source software solution for collecting, storing, distributing and sharing cybersecurity metrics and threats cybersecurity incident analysis and malware analysis. MISP suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject arbitrary...

Wonder CMS Cross-Site Scripting Vulnerability

Wonder CMS is an open source content management system CMS. A cross-site scripting vulnerability exists in Wonder CMS version 2014. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

LG Cross-Site Scripting Vulnerability

LG Looking Glass is a set of web applications written in Perl for connecting to a router or console. LG suffers from a cross-site scripting vulnerability. It allows an attacker to inject arbitrary web script or HTML via the "addr" parameter...

IBM BigFix Remote Control Cross-Site Scripting Vulnerability

IBM BigFix Remote Control is a set of remote control systems from IBM in the United States. A cross-site scripting vulnerability exists in IBM BigFix Remote Control 9.1.2 and earlier versions. A remote attacker can exploit this vulnerability to inject arbitrary Web script or HTML...

Nextcloud Server Cross-Site Scripting Vulnerability

Nextcloud is a suite of open source self-hosted file synchronization and sharing communication application platform. Nextcloud Server has a cross-site scripting vulnerability in the CardDAV image output. An attacker can exploit this vulnerability to launch an XSS attack...

CVE-2016-0926

Cross-site scripting XSS vulnerability in Apps Manager in Pivotal Cloud Foundry PCF Elastic Runtime before 1.6.32 and 1.7.x before 1.7.8 allows remote attackers to inject arbitrary web script or HTML via unspecified input that improperly interacts with the AngularJS framework...

IBM WebSphere Portal Cross-Site Scripting Vulnerability (CNVD-2016-05853)

IBM WebSphere Portal is a suite of enterprise portal software from IBM. The software creates a platform that connects the internal and external parts of an organization, allowing employees, customers and suppliers to access internal data through the platform. A cross-site scripting vulnerability...

WP Good News Themes Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in Wordpress Good News Themes, which can be exploited by remote attackers to inject client-side scripting code...