WordPress plugin Total 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

BIT-JOOMLA-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs

Lack of output escaping for article titles leads to XSS vectors in various locations...

CVE-2026-21632

Lack of output escaping for article titles leads to XSS vectors in various locations...

EUVD-2026-17859

Lack of output escaping for article titles leads to XSS vectors in various locations...

CVE-2026-21632

Lack of output escaping for article titles leads to XSS vectors in various locations...

CVE-2026-21632

Lack of output escaping for article titles leads to XSS vectors in various locations...

CVE-2026-21632

Joomla! CMS core contains XSS vectors in various article title outputs. Affected versions: 4.0.0–5.4.3 and 6.0.0–6.0.3. The connected document specifies core-XSS in article titles; no exploit specifics or remediation are provided in the excerpt.

CVE-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs

Lack of output escaping for article titles leads to XSS vectors in various locations...

CVE-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs

Lack of output escaping for article titles leads to XSS vectors in various locations...

Joomla! CMS 跨站脚本漏洞

Joomla! CMS is a content management system developed under the open source Joomla! framework. Joomla! CMS has a cross-site scripting vulnerability, which stems from the lack of output escaping in article titles, potentially leading to cross-site scripting attacks...

PT-2026-29504

Name of the Vulnerable Software and Affected Versions versions affected versions not specified Description A lack of output escaping for article titles creates cross-site scripting XSS vectors in multiple areas. Recommendations At the moment, there is no information about a newer version that...

CVE-2025-28101

CVE-2025-28101 affects flaskBlog v2.6.1, where the /post/{postTitle} endpoint allows arbitrary file deletion by crafting a POST request, enabling deletion of article titles created by other users. Documented details confirm the vulnerable component and impact (I/A low, C=none) with CVSSv3.1 score...

CVE-2022-22123

In Halo, versions v1.0.0 to v1.4.17 latest are vulnerable to Stored Cross-Site Scripting XSS in the article title. An authenticated attacker can inject arbitrary javascript code that will execute on a victim’s server...

Stored Cross-Site Vulnerability in ASPCMS

ASPCMS is a set of open source CMS website building system. ASPCMS storage type cross-site vulnerability , due to aspcms background to add article titles at the special character filtering is not strict , attackers can use the vulnerability to launch xss storage type cross-site scripting attacks...

AJ Article 3.0 - Cross-Site Scripting

AJ Article 3.0 - Cross-Site Scripting 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 vendor URL :http://www.ajsquare.com/ Google Dork :Powered By: AJ Square Inc Author : Sid3^effects aKa HaRi special thanks to : r007...