CVE-2023-1240 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1237

CVE-2023-1237 affects the GitHub project answerdev/answer prior to version 1.0.6. The issue is a Stored Cross-site Scripting (XSS) vulnerability in user-supplied content that is stored and later displayed. The provided connected documents confirm the vulnerability type (XSS) and affected version ...

CVE-2023-1245 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

answer 跨站脚本漏洞

answer is an open source knowledge-based community software. A cross-site scripting vulnerability exists in versions of answer prior to 1.0.6. An attacker could exploit this vulnerability to perform a cross-site scripting attack...

answer 跨站脚本漏洞

answer is an open source knowledge-based community software. A cross-site scripting vulnerability exists in versions of answer prior to 1.0.6. An attacker could exploit this vulnerability to perform a cross-site scripting attack...

PT-2023-16827 · Unknown · Answerdev/Answer

Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...

CVE-2023-1240

The CVE-2023-1240 entry covers a Stored XSS flaw in the open-source project answerdev/answer, affecting versions prior to 1.0.6. The vulnerability arises from input that is stored and later displayed without proper sanitization, enabling arbitrary script execution in affected users’ browsers. Mul...

CVE-2023-1243 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

Avoid The Randomness From The Sky

This is a plea for cryptography specification authors. If your protocol uses randomness, please make it a deterministic function that takes a fixed-size string of random bytes , and publish known-answer tests for it. This whole issue could really be just the paragraph above, but I feel like I nee...

answer cross-site scripting vulnerability (CNVD-2023-31164)

answer is an open source knowledge-based community software. A cross-site scripting vulnerability exists in versions of answer prior to 1.0.5. The vulnerability stems from a lack of effective filtering and escaping of user-supplied data, which can be exploited by attackers to cause cross-site...

K98528405: BIG-IP BIND vulnerability CVE-2018-5740

Security Advisory Description A flaw in the "deny-answer-aliases" feature can cause an INSIST assertion failure in named. CVE-2018-5740 Impact A flaw in a rarely used BIND feature can cause an assertion failure in named. As a result, the bind process restarts. Security Advisory Status F5 Product...

CVE-2023-0934

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.5...

answer 跨站脚本漏洞

answer is an open source knowledge-based community software. A cross-site scripting vulnerability exists in versions of answer prior to 1.0.5. The vulnerability stems from a lack of effective filtering and escaping of user-supplied data, which can be exploited by attackers to cause cross-site...

CVE-2023-0934 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.5...

PT-2023-16622 · Answerdev · Answer

Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.5 Description: The issue is related to Cross-site Scripting XSS - Stored, which affects the GitHub repository answerdev/answer. Cross-site Scripting XSS is a type of security vulnerability that occurs wh...

CVE-2023-0934 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.5...

CVE-2023-0934

The CVE-2023-0934 entry describes a Cross-site Scripting (XSS) vulnerability stored in the GitHub project answerdev/answer, present in versions prior to 1.0.5. The vulnerability is categorized as stored XSS, indicating that user-supplied input is not properly filtered/escaped, enabling injected s...

CVE-2023-0934 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.5...

SUSE CVE-2010-4531

Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset ATR Handler atrhandler.c for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service crash and possibly execute arbitrary code via a...

SUSE CVE-2017-12775

qa-include/qa-install.php in Question2Answer before 1.7.5 allows remote attackers to create multiple user accounts...