6 matches found
EUVD-2023-49238
Malicious code in bioql PyPI...
CVE-2023-44915
A cross-site scripting XSS vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the loginerror parameter...
CVE-2023-44915
A cross-site scripting XSS vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the loginerror parameter...
CVE-2023-44915
A cross-site scripting XSS vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the loginerror parameter...
CVE-2023-44915
CVE-2023-44915 affects c3crm up to version 3.0.4, where an XSS flaw in the /Login.php component allows crafted payloads in the login_error parameter to execute scripts. Several sources confirm the vulnerability class and affected component; Red Hat and NVD entries corroborate the same description...
PT-2025-26852 · C3Crm · C3Crm
Name of the Vulnerable Software and Affected Versions: c3crm versions up to 3.0.4 Description: A cross-site scripting XSS issue in the /Login.php component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the login error parameter. This enables attacke...