6239 matches found
av.dpw.sharjah.ae Cross Site Scripting vulnerability OBB-2307337
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
plasson-pead.com.br Cross Site Scripting vulnerability OBB-2304264
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Cross-Site Scripting (XSS)
anchorcms/anchor-cms is vulnerable to cross-site scripting XSS attacks. The library does not properly sanitize the posts column in 'posts.php', allowing an attacker to upload the title and content which contains malicious code to obtain admin cookie to get the admin access...
Cross-Site Scripting (XSS)
yetiforcecrm is vulnerable to cross-site scripting. The vulnerability exists due to a lack of sanitization of input during web page generation...
biblioteka.vu.lt Cross Site Scripting vulnerability OBB-2302312
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2021-4107
yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-3831
gnuboard5 is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
kdbbiz.co.kr Cross Site Scripting vulnerability OBB-2299493
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
phonology.ch.ntnu.edu.tw Cross Site Scripting vulnerability OBB-2298496
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cn-gsc.com Cross Site Scripting vulnerability OBB-2293120
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2021-43673
dzzoffice 2.02.1SCUTF8 is affected by a Cross Site Scripting XSS vulnerability in explorerfile.php. The output of the exit function is printed for the user via exitjsonencode$return...
sso.quangnam.gov.vn Cross Site Scripting vulnerability OBB-2291081
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Business-Dna Solution GmbH TopEase Cross-Site Scripting Vulnerability (CNVD-2021-95581)
Business-Dna Solution GmbH TopEase is a "Transformational Risk" solution from Business-Dna Solution GmbH, Switzerland. It is used to manage complex projects and initiatives comprehensively, simply, quickly and securely. A cross-site scripting vulnerability exists in Business-Dna Solution GmbH...
CVE-2021-43696
twmap v2.91v4.33 is affected by a Cross Site Scripting XSS vulnerability. In file list.php, the exit function will terminate the script and print the message to the user. The message will contain $REQUEST then there is a XSS vulnerability...
CVE-2021-43697
Workerman-ThinkPHP-Redis last update Mar 16, 2018 is affected by a Cross Site Scripting XSS vulnerability. In file Controller.class.php, the exit function will terminate the script and print the message to the user. The message will contain $GETC'VARJSONPHANDLER' then there is a XSS vulnerability...
osu.ru Cross Site Scripting vulnerability OBB-2286890
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
quake3.fr Cross Site Scripting vulnerability OBB-2285077
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
idmt.orthofix.com Cross Site Scripting vulnerability OBB-2284203
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
yourcouncil.nsw.gov.au Cross Site Scripting vulnerability OBB-2284065
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bbbootstrap.com Cross Site Scripting vulnerability OBB-2283304
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...