4 matches found
Orejime 跨站脚本漏洞
Orejime is an open source user consent management tool from Boscop. A cross-site scripting vulnerability exists in Orejime versions prior to 2.3.2, which stems from embedded javascript code in the data attribute and could lead to the execution of malicious code...
PT-2023-7467 · Apache · Apache Airflow Drill Provider
Name of the Vulnerable Software and Affected Versions: Apache Airflow Drill Provider versions prior to 2.3.2 Description: The issue is related to improper input validation in the Apache Airflow Drill Provider. This can allow a remote attacker to impact the confidentiality of protected information...
joplin 跨站请求伪造漏洞
Joplin is an open source notes and to-do list application. A security vulnerability exists in versions of joplin prior to 2.3.2 that stems from the application's lack of various forms of CSRF checking, leaving it vulnerable to cross-site request forgery attacks...
Magento Input Validation Error Vulnerability (CNVD-2019-39390)
Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. A security vulnerability exists in Magento version 2.1 before 2.1.18, version 2.2 before 2.2.9, and version 2.3...