Zenphoto 跨站脚本漏洞

Zenphoto is a content management system from Zenphoto open source. A cross-site scripting vulnerability exists in Zenphoto version 1.6, which stems from improper cleanup of the album description field and could lead to a stored cross-site scripting attack...

📄 TinyWebGallery 2.7 Cross Site Scripting

TinyWebGallery version 2.7 suffers from a persistent cross site scripting vulnerability. Exploit Title: TinyWebGallery 2.7 - Authenticated Stored XSS Date: 2025-27-06 Exploit Author: tmrswrr Vendor Homepage: https://www.tinywebgallery.com Version: 2.7 Tested on:...

Boom CMS 8.0.7 Cross Site Scripting

Document Title: =============== Boom CMS v8.0.7 - Cross Site Scripting Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2274 Release Date: ============= 2023-07-03 Vulnerability Laboratory ID VL-ID: ==================================== 2274...

Zenphoto 1.6 - Multiple stored XSS

Exploit Title: Zenphoto 1.6 - Multiple stored XSS Application: Zenphoto-1.6 xss poc Version: 1.6 Bugs: XSS Technology: PHP Vendor URL: https://www.zenphoto.org/news/zenphoto-1.6/ Software Link: https://github.com/zenphoto/zenphoto/archive/v1.6.zip Date of found: 01-05-2023 Author: Mirabbas Ağalar...

Imgur: Stored xss in ALBUM DESCRIPTION

Album descriptions that take user generated text typically have strong protections around XSS, however the researcher was able to bypass this protection by adding unsafe text to the description field in a rarely accessed area of the site. This led to a reflected XSS which would trigger as soon as...

Discuz! X2 Beta 存储型XSS

简要描述： Discuz! X2 Beta 存储型XSS 详细说明： Discuz! X2 Beta 【家园】相册描述 存储型XSS漏洞。 漏洞证明：...

Joomla JomSocial 1.6.288 Cross Site Scripting

Exploit Title: Joomla Component JomSocial 1.6.288 Multiple XSS Vulnerabilities Date: 26 March 2010 Author: jdc Software Link: http://jomsocial.com Version: 1.6.288 Since Sid3^effects published a single one of these 21 June 2010 - http://www.exploit-db.com/exploits/13955/ - I figured the cat's out...

Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities

Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities Software Link: http://jomsocial.com Version: 1.6.288 Since Sid3^effects published a single one of these 21 June 2010 - http://www.exploit-db.com/exploits/13955/ - I figured the cat's out of the bag... His exploit...

Friendster.com Cross Site Scripting

================================================================================================== $$$$$$$\ $$\ $$\ $$\ $$$$$$\ $$ $$\ | $$ | $$ | $$ $$\ $$ | $$ |$$\ $$$$$$$\ $$$$$$\ $$$$$$$\ $$$$$$\ $$$$$$$\ $$$$$$\ $$ | $$ / $$ | $$$$$$$\ |$$ |$$ |$$ $$\ $$ $$\ $$ $$\ $$ $$\ $$ $$\ $$ |...