155 matches found
CVE-2017-20116 TrueConf Server Reflected cross site scripting
A vulnerability was found in TrueConf Server 4.3.7. It has been classified as problematic. Affected is an unknown function of the file /admin/group/list/. The manipulation of the argument checkedgroupid leads to basic cross site scripting Reflected. It is possible to launch the attack remotely. T...
CVE-2017-20115 TrueConf Server Reflected cross site scripting
A vulnerability was found in TrueConf Server 4.3.7 and classified as problematic. This issue affects some unknown processing of the file /admin/conferences/list/. The manipulation of the argument sort leads to basic cross site scripting Reflected. The attack may be initiated remotely. The exploit...
CVE-2017-20115
CVE-2017-20115 affects TrueConf Server 4.3.7. The issue is a reflected cross-site scripting vulnerability in the handling of the sort parameter for the /admin/conferences/list/ endpoint. This can be triggered remotely and has been publicly disclosed. Public references indicate multiple corroborat...
CVE-2017-20115 TrueConf Server Reflected cross site scripting
A vulnerability was found in TrueConf Server 4.3.7 and classified as problematic. This issue affects some unknown processing of the file /admin/conferences/list/. The manipulation of the argument sort leads to basic cross site scripting Reflected. The attack may be initiated remotely. The exploit...
CVE-2017-20114
TrueConf Server 4.3.7 contains a reflected cross-site scripting vulnerability in /admin/conferences/get-all-status/ caused by unsanitized keys[] input. The issue can be exploited remotely and an exploit has been disclosed publicly (referenced in multiple sources). Public-enabling details include ...
CVE-2017-20114 TrueConf Server Reflected cross site scripting
A vulnerability has been found in TrueConf Server 4.3.7 and classified as problematic. This vulnerability affects unknown code of the file /admin/conferences/get-all-status/. The manipulation of the argument keys leads to basic cross site scripting Reflected. The attack can be initiated remotely...
CVE-2017-20114 TrueConf Server Reflected cross site scripting
A vulnerability has been found in TrueConf Server 4.3.7 and classified as problematic. This vulnerability affects unknown code of the file /admin/conferences/get-all-status/. The manipulation of the argument keys leads to basic cross site scripting Reflected. The attack can be initiated remotely...
CVE-2017-20113 TrueConf Server Stored cross site scripting
A vulnerability, which was classified as problematic, was found in TrueConf Server 4.3.7. This affects an unknown part. The manipulation leads to basic cross site scripting Stored. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...
CVE-2017-20113 TrueConf Server Stored cross site scripting
A vulnerability, which was classified as problematic, was found in TrueConf Server 4.3.7. This affects an unknown part. The manipulation leads to basic cross site scripting Stored. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...
PT-2022-7987 · Trueconf · Trueconf Server
Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: A problematic issue affects some unknown functionality of the file "/admin/conferences/list/". The manipulation of the argument domxss leads to basic cross site scripting DOM. The attack may be...
PT-2022-3296 · Trueconf · Trueconf Server
Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: A problematic vulnerability has been found in TrueConf Server, affecting an unknown part of the file /admin/general/change-lang. The manipulation of the redirect url argument leads to an open redirec...
PT-2022-3299 · Trueconf · Trueconf Server
Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: A vulnerability has been found in the /admin/conferences/get-all-status/ component of TrueConf Server, related to the failure to neutralize script-related HTML tags on a web page. The manipulation of...
TrueConf Server 跨站脚本漏洞
TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server contains a cross-site scripting vulnerability that can be exploited by remote attackers to perform basic cross-site scripting DOM attacks...
TrueConf Server 跨站脚本漏洞
TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server contains a cross-site scripting vulnerability that could be exploited by remote attackers to perform basic cross-site scripting Reflected attacks...
TrueConf Server 跨站脚本漏洞
TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server contains a cross-site scripting vulnerability that can be exploited by remote attackers to perform basic cross-site scripting DOM attacks...
PT-2022-3297 · Trueconf · Trueconf Server
Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: The issue is related to the lack of neutralization of script-related HTML tags on a web page, specifically affecting the /admin/conferences/list/ file. The manipulation of the sort argument leads to...
PT-2022-3298 · Trueconf · Trueconf Server
Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: The issue is related to the failure to neutralize script-related HTML tags on a web page, which can lead to basic cross-site scripting Stored. This can be initiated remotely. The exploit has been...
TrueConf Server 输入验证错误漏洞
TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. TrueConf Server version 4.3.7 is vulnerable to an input validation error that could be exploited by remote attackers to perform open redirect attacks...
TrueConf Server 跨站脚本漏洞
TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server is vulnerable to a cross-site scripting vulnerability that originates from unknown code in the file /admin/conferences/get-all-status/, with the parameter...
TrueConf Server 跨站脚本漏洞
TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server is vulnerable to a cross-site scripting vulnerability that could be exploited by attackers to execute arbitrary HTML and script code in the user's browser...