Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/17 8:27 p.m.2 views

CVE-2026-40286

WeGIA is a web manager for charitable institutions. In versions prior to 3.6.10, a Stored Cross-Site Scripting XSS vulnerability was identified in the 'Member Registration' Cadastrar Sócio function. By injecting a payload into the 'Member Name' Nome Sócio field, the script is persistently stored ...

7.5CVSS5.8AI score0.00209EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/17 8:24 p.m.11 views

CVE-2026-40284

CVE-2026-40284 affects WeGIA, a web manager for charitable institutions. In versions before 3.6.10, there is a Stored Cross-Site Scripting (XSS) vulnerability that allows an authenticated user to inject malicious JavaScript through the Destino, Destinatário field (payload stored and later execute...

6.8CVSS5.7AI score0.0023EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.10 views

WeGIA 安全漏洞

WeGIA is a network manager for the welfare organization developed by Nilson Lazarin. Versions of WeGIA prior to 3.6.10 contained security vulnerabilities, which were caused by improper handling of the cpfusuario parameter in the dao/memorando/UsuarioDAO.php file. This improper handling could lead...

8.8CVSS5.9AI score0.00266EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/05/10 12:0 a.m.6 views

PT-2020-12303 · Moodle +1 · Moodle +1

Name of the Vulnerable Software and Affected Versions: Moodle versions 3.8 before 3.8.3 Moodle versions 3.7 before 3.7.6 Moodle versions 3.6 before 3.6.10 Moodle versions 3.5 before 3.5.12 Moodle earlier unsupported versions Description: A flaw was found in Moodle that allows creating a SCORM...

8.8CVSS5.9AI score0.03083EPSS
Exploits0References22
CNVD
CNVD
added 2019/08/27 12:0 a.m.4 views

Bolt CMS Cross-Site Scripting Vulnerability (CNVD-2019-29167)

Bolt CMS is a PHP-based open source content management system for the Bolt community. A cross-site scripting vulnerability exists in Bolt CMS versions prior to 3.6.10, which can be exploited by an attacker to execute client-side code...

6.1CVSS8.2AI score0.00861EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/27 12:0 a.m.3 views

Bolt CMS Cross-Site Scripting Vulnerability (CNVD-2019-29166)

Bolt CMS is a PHP-based open source content management system for the Bolt community. A cross-site scripting vulnerability exists in the Controller/Async/FilesystemManager.php file in Bolt CMS versions prior to 3.6.10, which can be exploited by an attacker to execute client-side code...

6.1CVSS8.2AI score0.00861EPSS
Exploits0References1
Rows per page
Query Builder