CVE-2025-0706

A vulnerability was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/sys/admin.html. The manipulation leads to cross site scripting. The attack may be launched remotely...

PT-2025-4015 · Joeybling · Bootplus

Name of the Vulnerable Software and Affected Versions: JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d Description: A vulnerability was found in JoeyBling bootplus, affecting some unknown functionality of the file /admin/sys/admin.html. The manipulation leads to cross site...

PT-2019-13973 · Opencart · Opencart

Name of the Vulnerable Software and Affected Versions: OpenCart versions 3.x Description: The issue allows stored XSS within the Source/HTML editing feature of the Categories, Product, and Information pages when an attacker has login access to the admin panel. Recommendations: For OpenCart versio...

CVE-2018-19596

Zurmo 3.2.4 allows HTML Injection via an admin's use of HTML in the report section, a related issue to CVE-2018-19506...

CVE-2017-11646

NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to CSRF attacks, as demonstrated by using administration.html to disable the firewall. They does not contain any token that can mitigate CSRF vulnerabilities within the device...