is.thecateringjob.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-971258 Security Researcher 0xrocky Helped patch 1796 vulnerabilities Received 7 Coordinated Disclosure badges Received 5 recommendations , a holder of 7 badges for responsible and coordinated disclosure, found a security vulnerability affecting is.thecateringjob.com websit...

Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential cross-site scripting (XSS) vulnerability (CVE-2018-15494)

Summary IBM Financial Transaction Manager for ACH Services FTM ACH for Multi-Platform has addressed the following vulnerability. A potential cross-site scripting vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin...

leanin.org Cross Site Scripting vulnerability

Security Researcher Rbcafe Helped patch 258 vulnerabilities Received 3 Coordinated Disclosure badges Received 7 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting leanin.org website and its users. Following coordinated and...

Webmin < 1.760 xmlrpc.cgi Cross-Site Scripting Vulnerability

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.760. It is, therefore, affected by a cross-site scripting vulnerability in xmlrpc.cgi, which could potentially lead to remote code execution in certain products. Note that the scanner has not tested...

hmart.mu Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-952377 Security Researcher Dipu1A Helped patch 1030 vulnerabilities Received 6 Coordinated Disclosure badges Received 22 recommendations , a holder of 6 badges for responsible and coordinated disclosure, found a security vulnerability affecting hmart.mu website and its...

sportplan.net Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-932588 Security Researcher Gh05tPT Helped patch 6892 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting sportplan.net website and...

CVE-2017-18481

cPanel before 62.0.4 allows stored XSS in the WHM Account Suspension List interface SEC-211...

CVE-2019-3485

Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1...

admin.stubbses.org Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-903095 Security Researcher Gh05tPT Helped patch 6892 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting admin.stubbses.org websit...

Stored Cross-site Scripting Vulnerability in UQCMS Single Merchant Edition Frontend

UQCMS Single Merchant System is an external display and shopping system suitable for running your own products. A stored cross-site scripting vulnerability exists in the frontend of UQCMS Single Merchant Edition. An attacker can exploit this vulnerability to obtain background administrator cookie...

keyworddiscovery.co.uk Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-900088 Security Researcher geeknik Helped patch 8815 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting keyworddiscovery.co.uk...

etipping.com.au Cross Site Scripting vulnerability

Security Researcher Renzi Helped patch 6742 vulnerabilities Received 8 Coordinated Disclosure badges Received 36 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting etipping.com.au website and its users. Following coordinated...

Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Tivoli Federated Identity Manager (CVE-2018-1902, CVE-2019-4030,CVE-2019-4046)

Summary IBM WebSphere Application Server WAS is shipped as a component of IBM Tivoli Federated Identity Manager TFIM. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bullet...

Information disclosure

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1023...

CVE-2017-5213

Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Cross Site Scripting XSS...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Rational ClearCase (CVE-2019-4030)

Summary IBM WebSphere Application Server WAS is shipped as a component of IBM Rational ClearCase. Information about a security vulnerability affecting WAS has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

Arbitrary Code Execution

Red Hat Certificate System RHCS is an enterprise software system designed to manage enterprise Public Key Infrastructure PKI deployments. The Token Processing System TPS is a PKI subsystem that acts as a Registration Authority RA for authenticating and processing enrollment requests, PIN reset...

Stored Cross-Site Scripting Vulnerability in Public Resources Trading Center of Jiangsu Guotai Newpoint Software Co.

Jiangsu Guotai New Point Software Co., Ltd. is to provide e-government, public resources trading, electronic bidding, construction industry, smart city and other fields of related software products and hardware and software integration solutions. A stored cross-site scripting vulnerability exists...

Stored Cross-Site Scripting Vulnerability at the Address of Cloud EC E-commerce System V1.2.4

Cloud EC e-commerce system hereinafter referred to as Cloud EC is a set of PHP + MYSQL-based open source e-commerce system software developed independently by Cloud MYSQL e-commerce Co. Cloud EC e-commerce system V1.2.4 address at the existence of stored cross-site scripting vulnerability, the...

CVE-2018-19525

An issue was discovered on Systrome ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1TRUNK-20180914.bin devices. There is CSRF via /ui/?g=objkeywordsadd and /ui/?g=objkeywordsaddsave with resultant XSS because of a lack of csrf token validation...