105 matches found
CVE-2019-3576
CVE-2019-3576 affects the inxedu platform through 2018-12-24, where a SQL injection vulnerability exists in the user flow—specifically in the deleteFavorite path handled by UserController (deleteFavorite in com/inxedu/os/edu/controller/user/UserController.java) and triggered via MyBatis in course...
SQL injection vulnerability in JYmusic UserController.class.php page s parameter
JYmusic is an open source cross-platform music management system. A SQL injection vulnerability exists in the JYmusic UserController.class.php page s parameter. A remote attacker can exploit the vulnerability to obtain sensitive database information...
XSS vulnerability in Frog CMS
Vulnerability ID: HTB22684 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinfrogcms2.html Product: Frog CMS Vendor: Philippe Archambault http://www.madebyfrog.com/ Vulnerable Version: 0.9.5 and probably prior versions Vendor Notification: 09 November 2010 Vulnerability Type: XSS Cross...
Frog CMS 0.9.5 - Multiple Vulnerabilities
Vulnerability ID: HTB22685 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfrogcms.html Product: Frog CMS Vendor: Philippe Archambault http://www.madebyfrog.com/ Vulnerable Version: 0.9.5 and probably prior versions Vendor Notification: 09 November 2010 Vulnerability Type: CSRF Cross-Site...
Wolf CMS 0.6.0b - Multiple Vulnerabilities
Wolf CMS 0.6.0b - Multiple Vulnerabilities Vulnerability ID: HTB22681 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinwolfcms.html Product: Wolf CMS Vendor: Wolf CMS team http://www.wolfcms.org/ Vulnerable Version: 0.6.0b and probably prior versions Vendor Notification: 09 November 2010...