5 matches found
EUVD-2022-1667
Malicious code in bioql PyPI...
Rapid7 Insight Platform 安全漏洞
Rapid7 Insight Platform is a platform for managing profiles, users, products, API keys, and settings from Rapid7 USA. A security vulnerability exists in Rapid7 Insight Platform that stems from the inclusion of an authorization missing issue that allows an attacker to intercept local requests to s...
CVE-2018-1551
IBM WebSphere MQ 8.0.0.2 through 8.0.0.8 and 9.0.0.0 through 9.0.0.3 could allow users to have more authority than they should have if an MQ administrator creates an invalid user group name. IBM X-Force ID: 142888...
CVE-2018-8832
enhavo 0.4.0 has XSS via a user-group that contains executable JavaScript code in the user-group name. The XSS attack launches when a victim visits the admin user group page...
MODX Revolution CMS Cross-Site Scripting Vulnerability
MODX Revolution CMS is a new generation of Web2.0 open source content management system CMS of the U.S. company MODX. The system supports online collaboration , search engine optimization SEO, add-ons and so on. A cross-site scripting vulnerability exists in MODX Revolution CMS 2.5.6 and earlier...