8 matches found
PT-2025-4925 · Unknown · Rsvpmaker Volunteer Roles
Name of the Vulnerable Software and Affected Versions: RSVPMaker Volunteer Roles versions 1.5.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows reflected Cross-site Scripting XSS. This enables attackers to inject malicious...
PT-2023-7010 · Phpipam · Phpipam
Name of the Vulnerable Software and Affected Versions: phpipam versions prior to 1.5.2 Description: The issue allows attackers to enumerate arbitrary fields in the LDAP server and access sensitive data via a crafted POST request. This is possible due to a LDAP injection vulnerability via the dnam...
PT-2022-6562 · Gitea · Gitea
Name of the Vulnerable Software and Affected Versions: Gitea versions prior to 1.5.2 Description: The issue is related to a Cross Site Request Forgery CSRF vulnerability in the Gitea Git repository management system interface. This vulnerability can be exploited by a remote attacker to perform a...
PrestaShop 跨站脚本漏洞
Prestashop is a set of open source e-commerce solutions from the United States Prestashop. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop that stems from PrestaShop before 1.5.2 that allows XSS via the...
PT-2021-23591 · Unknown · Github.Com/Ecnepsnai/Web
Name of the Vulnerable Software and Affected Versions: github.com/ecnepsnai/web package versions prior to 1.5.2 Description: The issue arises when Web Sockets do not execute any AuthenticateMethod methods, potentially leading to a nil pointer dereference or authentication bypass. This problem...
Apache Unomi 注入漏洞
Apache Unomi is a java open source client data platform that can be used on multiple systems to manage user profiles and the data associated with that profile, Unomi was announced as a top Apache project in 2019. Since Apache Unomi is built as an OSGi application running in Apache Karaf, it is...
PT-2020-8502 · Adns +2 · Adns +2
Name of the Vulnerable Software and Affected Versions: adns versions prior to 1.5.2 Description: An issue was discovered in adns where it hangs and consumes CPU resources if a compression pointer loop is encountered. Recommendations: For versions prior to 1.5.2, update to version 1.5.2 or later t...
PT-2023-16824 · Phpipam +1 · Phpipam +1
Name of the Vulnerable Software and Affected Versions: phpipam/phpipam versions prior to 1.5.2 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing an attacker to inject...