6 matches found
CVE-2023-35817
DevExpress before 23.1.3 allows AsyncDownloader SSRF...
DevExpress 安全漏洞
DevExpress is a software from the American company DevExpress, Inc. for providing best-in-class UI controls, tools and frameworks for WinForms, ASP.NET, MVC, Blazor, ASP.NET Core, WPF, VCL, Xamarin and JavaScript. A security vulnerability exists in DevExpress versions prior to 23.1.3 that stems...
DevExpress 安全漏洞
DevExpress is a software from the American company DevExpress, Inc. for providing best-in-class UI controls, tools and frameworks for WinForms, ASP.NET, MVC, Blazor, ASP.NET Core, WPF, VCL, Xamarin and JavaScript. A security vulnerability exists in DevExpress versions prior to 23.1.3 that stems...
PT-2024-30448
Name of the Vulnerable Software and Affected Versions Contest Gallery versions prior to 23.1.3 Description The issue is related to the exposure of sensitive information to an unauthorized actor. This affects the Contest Gallery plugin for WordPress, potentially disclosing unauthorized comment use...
Schoolbox Cross-Site Scripting Vulnerability
Schoolbox is an online learning platform from Schoolbox Australia. A cross-site scripting vulnerability exists in Schoolbox versions prior to 23.1.3, which stems from a cross-site scripting vulnerability in the Calendar feature that allows an authenticated attacker to perform a secure operation i...
Schoolbox Cross-Site Scripting Vulnerability
Schoolbox is an online learning platform from Schoolbox Australia. A cross-site scripting vulnerability exists in Schoolbox versions prior to 23.1.3, which stems from a cross-site scripting vulnerability in the News feature that allows an authenticated attacker to perform a secure operation in an...