5 matches found
Explorance Blue security vulnerabilities
Explorance Blue is a learning experience management software developed by the Canadian company Explorance. Versions of Explorance Blue prior to 8.14.9 contained security vulnerabilities. These vulnerabilities were due to insufficient input validation on the web application endpoints, which could...
CVE-2019-14761
An issue was discovered in KaiOS 2.5. The pre-installed Note application is vulnerable to HTML and JavaScript injection attacks. A local attacker can inject arbitrary HTML into the Note application. At a bare minimum, this allows an attacker to take control over the Note application's UI e.g.,...
CVE-2020-28487 Cross-site Scripting (XSS)
This affects the package vis-timeline before 7.4.4. An attacker with the ability to control the items of a Timeline element can inject additional script code into the generated application...
SQL Injection Vulnerability in ESPCMS-P8 Enterprise Website Management System
ESPCMS-P8 enterprise station management system is developed by PHP+MySQL, which supports enterprise news and product release, talent recruitment, download, independent form management, online message, online ordering, inquiry and membership and other related enterprise website functions. There is...
Malicious APK Injection Vulnerability on Android Backup and Restore Processing
Android is a free and open-source Linux-based operating system for mobile devices such as smartphones and tablets, led and developed by Google Inc. and the Open Handset Alliance. Android handles system backups and then restores with a security vulnerability that allows an attacker to inject a...