CVE-2024-0415

A vulnerability classified as critical was found in DeShang DSMall up to 6.1.0. Affected by this vulnerability is an unknown functionality of the file application/home/controller/TaobaoExport.php of the component Image URL Handler. The manipulation leads to improper access controls. The attack ca...

CVE-2024-0415 DeShang DSMall Image URL TaobaoExport.php access control

A vulnerability classified as critical was found in DeShang DSMall up to 6.1.0. Affected by this vulnerability is an unknown functionality of the file application/home/controller/TaobaoExport.php of the component Image URL Handler. The manipulation leads to improper access controls. The attack ca...

CVE-2024-0415

CVE-2024-0415 affects DeShang DSMall up to version 6.1.0, where an unknown functionality in Image URL Handler (file: application/home/controller/TaobaoExport.php) allows improper access control. The vulnerability can be exploited remotely and was disclosed publicly. Documented mitigation in PT-20...

DeShang DSMall Access Control Error Vulnerability

DeShang DSMall is a multi-user mall system from DeShang, China. An Access Control Error vulnerability exists in DeShang DSMall prior to version 6.1.0, which stems from the file application/home/controller/TaobaoExport.php of the component Image URL Handler that causes incorrect access control...

PT-2024-15538 · Deshang · Deshang Dsmall

Name of the Vulnerable Software and Affected Versions: DeShang DSMall versions up to 6.1.0 Description: A critical vulnerability was found in DeShang DSMall, affecting an unknown functionality of the file application/home/controller/TaobaoExport.php of the component Image URL Handler. This...

CVE-2023-6313

A vulnerability was found in SourceCodester URL Shortener 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Long URL Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has be...

CVE-2023-6313 SourceCodester URL Shortener Long URL cross site scripting

A vulnerability was found in SourceCodester URL Shortener 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Long URL Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has be...

CVE-2023-6313 SourceCodester URL Shortener Long URL cross site scripting

A vulnerability was found in SourceCodester URL Shortener 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Long URL Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has be...

CVE-2023-6313

SourceCodester URL Shortener 1.0 is affected, specifically the Long URL Handler component. The root cause involves manipulation of the Long URL Handler that enables cross-site scripting (XSS) when handling URL inputs. The vulnerability can be exploited remotely, and public exploitation details ar...

PT-2023-32613 · Sourcecodester · Sourcecodester Url Shortener

Name of the Vulnerable Software and Affected Versions: SourceCodester URL Shortener version 1.0 Description: A vulnerability was found in the Long URL Handler component, which can be exploited to lead to cross site scripting. The attack can be launched remotely. Recommendations: For SourceCodeste...

webkitgtk: Visiting a malicious website may lead to address bar spoofing.

A vulnerability was found in WebKitGTK. This flaw occurs due to an issue in the component URL Handler, which allows a remote attacker to manipulate an unknown input that can lead to clickjacking...

CVE-2023-3849

A vulnerability, which was classified as problematic, was found in mooSocial mooDating 1.2. Affected is an unknown function of the file /find-a-match of the component URL Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this...

Cross site scripting

A vulnerability, which was classified as problematic, was found in mooSocial mooDating 1.2. Affected is an unknown function of the file /find-a-match of the component URL Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this...

CVE-2023-3849

mooDating 1.2 contains a Cross-Site Scripting vulnerability in the URL Handler’s /find-a-match function. The flaw, triggered via URL parameters, allows remote injection of scripts (per nuclei/Exploit-DB entries) and can lead to user session token theft or access to personal data. Public PoC/explo...

CVE-2023-3847

A vulnerability classified as problematic was found in mooSocial mooDating 1.2. This vulnerability affects unknown code of the file /users of the component URL Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. VDB-235198 is the identifier assigned to...

Cross site scripting

A vulnerability, which was classified as problematic, has been found in mooSocial mooDating 1.2. This issue affects some unknown processing of the file /users/view of the component URL Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The associated...

Cross site scripting

A vulnerability classified as problematic was found in mooSocial mooDating 1.2. This vulnerability affects unknown code of the file /users of the component URL Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. VDB-235198 is the identifier assigned to...

CVE-2023-3848 mooSocial mooDating URL view cross site scripting

A vulnerability, which was classified as problematic, has been found in mooSocial mooDating 1.2. This issue affects some unknown processing of the file /users/view of the component URL Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The associated...

CVE-2023-3847 mooSocial mooDating URL users cross site scripting

A vulnerability classified as problematic was found in mooSocial mooDating 1.2. This vulnerability affects unknown code of the file /users of the component URL Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. VDB-235198 is the identifier assigned to...

CVE-2023-3846

A vulnerability classified as problematic has been found in mooSocial mooDating 1.2. This affects an unknown part of the file /pages of the component URL Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The identifier VDB-235197 was assigned...