24 matches found
EUVD-2014-9722
Malware in sbrugna...
EUVD-2014-9721
Malware in sbrugna...
EUVD-2014-9723
Malware in sbrugna...
EUVD-2014-9724
Malware in sbrugna...
CVE-2014-9918
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the userid parameter to signup.php...
CVE-2014-9917
An issue was discovered in Bilboplanet 2.0. There is a stored XSS vulnerability when adding a tag via the user/?page=tribes tags parameter...
CVE-2014-9919
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the fullname parameter to signup.php...
Cross site scripting
An issue was discovered in Bilboplanet 2.0. There is a stored XSS vulnerability when adding a tag via the user/?page=tribes tags parameter...
Cross site scripting
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the fullname parameter to signup.php...
Cross site scripting
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the userid parameter to signup.php...
CVE-2014-9917
CVE-2014-9917 affects Bilboplanet 2.0. The issue is a stored XSS vulnerability triggered when adding a tag via the URL parameter in user/?page=tribes tags. The root cause is unsanitized input in tag handling, allowing injected script to be stored and later rendered to other users. Impact is descr...
CVE-2014-9917
An issue was discovered in Bilboplanet 2.0. There is a stored XSS vulnerability when adding a tag via the user/?page=tribes tags parameter...
CVE-2014-9918
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the userid parameter to signup.php...
CVE-2014-9918
The connected documents confirm a Stored XSS vulnerability in Bilboplanet 2.0 affecting the signup.php endpoint via the user_id parameter. Root cause and technical details are not expanded beyond this description in the provided sources; no explicit exploit code or affected versions are listed. P...
CVE-2014-9919
CVE-2014-9919 affects Bilboplanet 2.0 with a Stored XSS in the signup.php fullname parameter. The NVD entry lists a CVSS‑v3 base score of 6.1 (MEDIUM): AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N, i.e., network attack, no availability impact, but partial confidentiality/integrity impact with user interac...
CVE-2014-9919
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the fullname parameter to signup.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 tribename or 2 tags parameter in a tribes page request to user/ or the 3 userid or 4 fullname parameter to signup.php...
CVE-2014-9916
Multiple cross-site scripting XSS vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 tribename or 2 tags parameter in a tribes page request to user/ or the 3 userid or 4 fullname parameter to signup.php...
CVE-2014-9916
Multiple cross-site scripting XSS vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 tribename or 2 tags parameter in a tribes page request to user/ or the 3 userid or 4 fullname parameter to signup.php...
CVE-2014-9916
CVE-2014-9916 affects Bilboplanet 2.0 with multiple cross-site scripting (XSS) vulnerabilities. The issues allow remote attackers to inject arbitrary web script or HTML via the following parameters: (1) tribe_name or (2) tags in a tribes page request to user/, and (3) user_id or (4) fullname in s...