25 matches found
CVE-2026-2735
Stored Cross-Site Scripting XSS in Alkacon's OpenCms v18.0, which occurs when user input is not properly validated when sending a POST request to ‘/blog/new-article/org.opencms.ugc.CmsUgcEditService.gwt’ using the ‘text’ parameter...
CVE-2023-29637
Cross Site Scripting XSS vulnerability in Qbian61 forum-java, allows attackers to inject arbitrary web script or HTML via editing the article content in the "article editor" page...
EUVD-2023-33178
Malicious code in bioql PyPI...
EUVD-2022-48406
Malicious code in bioql PyPI...
PT-2025-4080 · Maybecms · Maybecms
Name of the Vulnerable Software and Affected Versions: Maybecms version 1.2 Description: A problematic issue has been found in Maybecms, affecting an unknown part of the file /mb/admin/index.php?u=article-edit of the component Add Article. The manipulation of the data infocontent argument leads t...
CVE-2024-13032
A vulnerability classified as problematic was found in Antabot White-Jotter up to 0.2.2. Affected by this vulnerability is an unknown functionality of the file /admin/content/editor of the component Article Editor. The manipulation of the argument articleCover leads to server-side request forgery...
CVE-2024-13032
A vulnerability classified as problematic was found in Antabot White-Jotter up to 0.2.2. Affected by this vulnerability is an unknown functionality of the file /admin/content/editor of the component Article Editor. The manipulation of the argument articleCover leads to server-side request forgery...
CVE-2024-13032 Antabot White-Jotter Article Editor editor server-side request forgery
A vulnerability classified as problematic was found in Antabot White-Jotter up to 0.2.2. Affected by this vulnerability is an unknown functionality of the file /admin/content/editor of the component Article Editor. The manipulation of the argument articleCover leads to server-side request forgery...
CVE-2024-13032
The CVE-2024-13032 entry affects Antabot White-Jotter (
CVE-2024-13032 Antabot White-Jotter Article Editor editor server-side request forgery
A vulnerability classified as problematic was found in Antabot White-Jotter up to 0.2.2. Affected by this vulnerability is an unknown functionality of the file /admin/content/editor of the component Article Editor. The manipulation of the argument articleCover leads to server-side request forgery...
White-Jotter 代码问题漏洞
White-Jotter is a front-end and back-end separation project developed by Antabot personal developer using Vue+Spring Boot, with a full set of development tutorials. A code issue vulnerability exists in White-Jotter 0.2.2 and earlier versions, which stems from the articleCover parameter of the fil...
PT-2024-17889 · Unknown · Antabot White-Jotter
Name of the Vulnerable Software and Affected Versions: Antabot White-Jotter versions up to 0.2.2 Description: A problematic issue has been found in the Article Editor component, specifically in the /admin/content/editor file, affecting an unknown functionality. The manipulation of the articleCove...
CVE-2023-29637
Cross Site Scripting XSS vulnerability in Qbian61 forum-java, allows attackers to inject arbitrary web script or HTML via editing the article content in the "article editor" page...
Cross site scripting
Cross Site Scripting XSS vulnerability in Qbian61 forum-java, allows attackers to inject arbitrary web script or HTML via editing the article content in the "article editor" page...
CVE-2023-29637
Cross Site Scripting XSS vulnerability in Qbian61 forum-java, allows attackers to inject arbitrary web script or HTML via editing the article content in the "article editor" page...
PT-2023-22346 · Unknown · Qbian61 Forum-Java
Name of the Vulnerable Software and Affected Versions: Qbian61 forum-java affected versions not specified Description: The issue allows attackers to inject arbitrary web script or HTML via editing the article content in the "article editor" page. This is a Cross Site Scripting XSS vulnerability...
CVE-2023-29637
Cross Site Scripting XSS vulnerability in Qbian61 forum-java, allows attackers to inject arbitrary web script or HTML via editing the article content in the "article editor" page...
CVE-2022-45540
EyouCMS = 1.6.0 was discovered a reflected-XSS in article type editor component in POST value "name" if the value contains a malformed UTF-8 char...
CVE-2022-45540
EyouCMS = 1.6.0 was discovered a reflected-XSS in article type editor component in POST value "name" if the value contains a malformed UTF-8 char...
CVE-2022-45541
EyouCMS = 1.6.0 was discovered a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char...