PT-2022-28097 · Unknown · Heimdall Application Dashboard

Name of the Vulnerable Software and Affected Versions: Heimdall Application Dashboard versions 2.5.4 and earlier Description: The issue allows for reflected and stored Cross-Site Scripting XSS attacks via the Application name variable to the "Add application" page. The stored XSS will be triggere...

CVE-2016-3968

Multiple cross-site scripting XSS vulnerabilities in Sophos Cyberoam CR100iNG UTM appliance with firmware 10.6.3 MR-1 build 503, CR35iNG UTM appliance with firmware 10.6.2 MR-1 build 383, and CR35iNG UTM appliance with firmware 10.6.2 Build 378 allow remote attackers to inject arbitrary web scrip...

CVE-2011-3832

Eval injection vulnerability in config.php in Support Incident Tracker aka SiT! 3.65 allows remote authenticated administrators to execute arbitrary PHP code via the applicationname parameter in a save action...