6 matches found
Cross-site Scripting (XSS)
rails-html-sanitizer is vulnerable to cross-site scripting XSS attacks. Attackers can use non-whiltelisted attributes within sanitized output to inject and execute arbitrary webscript...
Cross-site Scripting (XSS)
spring-batch-admin-manager is vulnerable to stored cross-site scripting XSS attacks. Attackers can inject arbitrary webscript or HTML using the file upload feature...
Cross-site Scripting (XSS)
MapProxy is vulnerable to cross-site scripting XSS attacks. Attackers can use the format and srs parameters in the demo page to inject and execute arbitrary webscript...
Cross-site Scripting (XSS)
github.com/koding/koding is vulnerable to cross-site scripting XSS attacks. The library does not properly encode content in client/Main/CommonViews/suggestedtokenview.coffee, allowing a malicious user to inject and execute arbitrary webscript...
Cross-site Scripting (XSS)
keystone is vulnerable to cross-site scripting XSS attacks. Authenticated administrators can leverage the lack of sanitization in the content brief and content extended fields to inject and execute arbitrary webscript...
Cross-Site Scripting (XSS)
WordPress is vulnerable to cross-site scripting XSS attacks. The application uses offsite redirects which allows the attackers to inject and execute arbitrary webscript...