CVE-2022-23321

A persistent cross-site scripting XSS vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0...

EUVD-2022-28403

Malicious code in bioql PyPI...

EUVD-2022-28402

Malicious code in bioql PyPI...

CVE-2022-23320

XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. Since the application ships with default administrative credentials, an attacker may authenticate into the application and exfiltrate sensitive information from the database...

CVE-2022-23321

A persistent cross-site scripting XSS vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0...

CVE-2022-23321

A persistent cross-site scripting XSS vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0...

Cross site scripting

A persistent cross-site scripting XSS vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0...

CVE-2022-23321

A persistent cross-site scripting XSS vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0...

CVE-2022-23321

CVE-2022-23321 describes a persistent cross-site scripting (XSS) vulnerability in XMPie UStore 12.3.7244.0, affecting two input fields in the administrative panel during user edits. The issue is documented across multiple sources (NVD, Red Hat, CVE listings, and related advisories) and is tied to...

XMPie UStore 跨站脚本漏洞

Xmpie Ustore is a network printing solution from Xmpie USA. A security vulnerability exists in the XMPie UStore application that stems from a persistent cross-site scripting XSS vulnerability in two input fields in the admin panel when editing a user in the XMPie UStore application, version...

PT-2022-15929 · Xmpie · Xmpie Ustore

Name of the Vulnerable Software and Affected Versions: XMPie UStore version 12.3.7244.0 Description: A persistent cross-site scripting XSS issue exists in the administrative panel when editing users, specifically affecting two input fields. Recommendations: For version 12.3.7244.0, consider...

CVE-2022-23320

XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. Since the application ships with default administrative credentials, an attacker may authenticate into the application and exfiltrate sensitive information from the database...

Design/Logic Flaw

XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. Since the application ships with default administrative credentials, an attacker may authenticate into the application and exfiltrate sensitive information from the database...

CVE-2022-23320

XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. Since the application ships with default administrative credentials, an attacker may authenticate into the application and exfiltrate sensitive information from the database...

CVE-2022-23320

Summary: CVE-2022-23320 affects XMPie uStore 12.3.7244.0. The issue is an authentication/authorization weakness where default administrative credentials allow attackers to log in and exploit the ability to run or access raw SQL-based reports , leading to potential exfiltration of sensitive databa...

Xmpie Ustore 授权问题漏洞

Xmpie Ustore is a network printing solution from Xmpie USA. An authorization issue vulnerability exists in XMPie uStore that stems from the product allowing access to the application to steal database information via the included default administrative credentials. The following products and...