10 matches found
CVE-2022-42094
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the 'Card' content...
CVE-2025-3444
Zohocorp ManageEngine ServiceDesk Plus MSP and SupportCenter Plus versions below 14920 are vulnerable to authenticated Local File Inclusion LFI in the Admin module, where help card content is loaded...
Cross-site Scripting in Backdrop CMS
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the 'Card' content...
CVE-2022-42094
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the 'Card' content...
CVE-2022-42094
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the 'Card' content...
Cross site scripting
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the 'Card' content...
PT-2022-7183 · Unknown · Backdrop Cms
Name of the Vulnerable Software and Affected Versions: Backdrop CMS version 1.23.0 Description: The issue is related to the lack of protection for the web page structure in Backdrop CMS, which can be exploited by a remote attacker to conduct cross-site scripting XSS attacks. Specifically, the...
CVE-2022-42094
CVE-2022-42094 concerns Backdrop CMS, version 1.23.0, with a stored XSS bug in the Card content. The NVD/Nucli-templates describe a stored XSS that could allow an attacker to run arbitrary JavaScript in a victim’s browser, potentially enabling session hijacking, defacement, or theft of informatio...
The vulnerability of the eDocLib platform for storing and processing corporate data arises from the lack of measures taken to protect the website structure. This vulnerability allows attackers to carry out cross-site scripting attacks.
The vulnerability of the eDocLib platform for storing and processing corporate data exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the user’s browser by placing it in the “Card Content”...
Mozilla Firefox OS Cross-Site Scripting Vulnerability (CNVD-2015-05190)
Firefox OS is an open source mobile operating system with a Linux kernel for smartphones. Mozilla Firefox OS versions prior to 2.2, Gaia's Search application suffers from multiple cross-site scripting vulnerabilities in its implementation. These vulnerabilities can be exploited by remote attacker...