2 matches found
PT-2021-8668
Name of the Vulnerable Software and Affected Versions LimeSurvey version 3.6.2+180406 Description The issue is a cross-site scripting XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML. This is achieved via the changes cp parameter to the...
Chyrp 'class/Theme.php' Cross-Site Scripting Vulnerability
Chyrp is an open source lightweight blog Blog engine based on PHP and MySQL. Chyrp suffers from a cross-site scripting vulnerability. As the program fails to have adequate filtering of user-submitted input. An attacker could exploit the vulnerability to execute arbitrary script code in the browse...