168 matches found
Campcodes Online Job Finder System Cross-Site Scripting Vulnerability
Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which stems from a cross-site scripting vulnerability in the view parameter of the /admin/category/index.php...
Campcodes Online Job Finder System Cross-Site Scripting Vulnerability
Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which stems from a cross-site scripting vulnerability in the view parameter of the /admin/company/index.php...
Campcodes Online Job Finder System Cross-Site Scripting Vulnerability
Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which originates from a cross-site scripting vulnerability in the view parameter of the /admin/user/index.ph...
PT-2024-21512 · Unknown · Campcodes Online Job Finder System
Name of the Vulnerable Software and Affected Versions: Campcodes Online Job Finder System version 1.0 Description: A problem was found in the system. It affects an unknown part of the file /admin/vacancy/index.php. The manipulation of the argument view leads to cross site scripting. It is possibl...
VulnCheck KEV: CVE-2024-1061
The 'HTML5 Video Player' WordPress Plugin, version 2.5.25 is affected by an unauthenticated SQL injection vulnerability in the 'id' parameter in the 'getview' function...
PT-2023-28928 · Phprecdb · Phprecdb
Name of the Vulnerable Software and Affected Versions: phpRecDB version 1.3.1 Description: A vulnerability was found in the file /index.php of phpRecDB, where the manipulation of the argument r/view leads to cross-site scripting. The attack may be launched remotely. The vendor was contacted early...
PT-2023-12764 · Audiocodes · Audiocodes Device Manager Express
Name of the Vulnerable Software and Affected Versions: AudioCodes Device Manager Express versions through 7.8.20002.47752 Description: The issue concerns directory traversal during file download. This occurs via the view parameter in the "BrowseFiles.php" endpoint. Recommendations: For versions...
PT-2023-17290 · Keysight · Keysight Ixia Hawkeye
Name of the Vulnerable Software and Affected Versions: Keysight IXIA Hawkeye version 3.3.16.28 Description: A problem has been found in the software. It affects unknown code in the /licenses file. The issue arises when the view argument is manipulated with a specific input, leading to cross-site...
PT-2023-17253 · Sourcecodester · Sourcecodester Gadget Works Online Ordering System
Name of the Vulnerable Software and Affected Versions: SourceCodester Gadget Works Online Ordering System version 1.0 Description: A problem was found in the processing of the file /admin/products/index.php, specifically in the GET Parameter Handler component. The issue can be exploited by...
CVE-2023-1686
A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...
Young Entrepreneur E-Negosyo System 跨站脚本漏洞
Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from incorrect manipulation of the parameter view leading to cross-site...
PT-2023-17169 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System
Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A problem was found in the processing of the file bsenordering/admin/category/index.php, specifically in the GET Parameter Handler component. The issue allows for cro...
SourceCodester Monitoring of Students Cyber Accounts System 跨站脚本漏洞
Monitoring of Students Cyber Accounts System is a Monitoring of Students Cyber Accounts System by Chris Jim Egot Individual Developer. A cross-site scripting vulnerability exists in SourceCodester Monitoring of Students Cyber Accounts System version 1.0, which stems from an issue with the file...
AudioCodes Device Manager Express 路径遍历漏洞
AudioCodes Device Manager Express is a powerful lifecycle management tool for AudioCodes IP phones, EPOS and Jabra headsets and speakers from AudioCodes Israel. A path traversal vulnerability exists in AudioCodes Device Manager Express 7.8.20002.47752 and prior versions, which stems from a path...
SUSE CVE-2009-3618
Cross-site scripting XSS vulnerability in viewvc.py in ViewVC 1.0 before 1.0.9 and 1.1 before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the view parameter. NOTE: some of these details are obtained from third party information...
Rukovoditel SQL注入漏洞
Rukovoditel is a set of Web-based open source project management software from the Rukovoditel team. The software features project management, customer relationship management, and more. Rukovoditel v3.2.1 version of a security vulnerability , the vulnerability stems from the attacker can be...
CVE-2022-34192
Jenkins ontrack Jenkins Plugin 4.0.0 and earlier does not escape the name of Ontrack: Multi Parameter choice, Ontrack: Parameter choice, and Ontrack: SingleParameter parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers wi...
CVE-2022-32011
Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/applicants/index.php?view=view&id=...
CVE-2022-32011
Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/applicants/index.php?view=view&id=...
Jenkins Application Detector Plugin 跨站脚本漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application. Jenkins Application Detector 1.0.8 and earlier versions have a cross-site scripting vulnerability that stems from the program not properly escaping the view of the display...