25 matches found
CVE-2026-31353
An authenticated stored cross-site scripting XSS vulnerability in the Category module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...
GHSA-664P-J3Q6-P843 Feehi CMS has an authenticated stored cross-site scripting (XSS) vulnerability via the Category module
An authenticated stored cross-site scripting XSS vulnerability in the Category module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...
EUVD-2026-19343
An authenticated stored cross-site scripting XSS vulnerability in the Category module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...
Feehi CMS has an authenticated stored cross-site scripting (XSS) vulnerability via the Category module
An authenticated stored cross-site scripting XSS vulnerability in the Category module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...
CVE-2026-31353
An authenticated stored cross-site scripting XSS vulnerability in the Category module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...
FeehiCMS 安全漏洞
FeehiCMS is a PHP-based CMS website building system developed by Liufee’s individual developers. The FeehiCMS v2.1.1 version contains a security vulnerability. This vulnerability stems from a storage-type XSS issue with the Name parameter of the category module, which may allow for the execution ...
CVE-2026-31353
An authenticated stored cross-site scripting XSS vulnerability in the Category module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...
PT-2026-30667
An authenticated stored cross-site scripting XSS vulnerability in the Category module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...
CVE-2026-31353
CVE-2026-31353 is an authenticated stored XSS in the Category module of Feehi CMS v2.1.1. The vulnerability allows an attacker with valid credentials to inject a crafted payload via the Name parameter, enabling execution of arbitrary web scripts/HTML in the context of the vulnerable site. Documen...
EUVD-2021-23152
Malware in sbrugna...
EUVD-2023-23607
Malicious code in bioql PyPI...
CVE-2023-1349
A vulnerability, which was classified as problematic, has been found in Hsycms 3.1. Affected by this issue is some unknown functionality of the file controller\cate.php of the component Add Category Module. The manipulation of the argument title leads to cross site scripting. The attack may be...
CVE-2021-36550
TikiWiki v21.4 was discovered to contain a cross-site scripting XSS vulnerability in the component tiki-browsecategories.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload under the Create category module...
CVE-2023-2210
A vulnerability has been found in Campcodes Coffee Shop POS System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/categories/viewcategory.php. The manipulation of the argument id leads to sql injection. The attack can be launched...
CVE-2023-1349
A vulnerability, which was classified as problematic, has been found in Hsycms 3.1. Affected by this issue is some unknown functionality of the file controller\cate.php of the component Add Category Module. The manipulation of the argument title leads to cross site scripting. The attack may be...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in Hsycms 3.1. Affected by this issue is some unknown functionality of the file controller\cate.php of the component Add Category Module. The manipulation of the argument title leads to cross site scripting. The attack may be...
CVE-2023-1349 Hsycms Add Category Module cate.php cross site scripting
A vulnerability, which was classified as problematic, has been found in Hsycms 3.1. Affected by this issue is some unknown functionality of the file controller\cate.php of the component Add Category Module. The manipulation of the argument title leads to cross site scripting. The attack may be...
PT-2023-16917 · Hsycms · Hsycms
Name of the Vulnerable Software and Affected Versions: Hsycms version 3.1 Description: A problematic issue has been found in the file controllercate.php of the component Add Category Module. The manipulation of the title argument leads to cross site scripting. The attack may be launched remotely...
Hsycms 跨站脚本漏洞
Hsycms is a content management system CMS based on ThinkPHP. The system has features such as in-site linking, sitemap, full-site pseudo-static and custom URL URLs. A cross-site scripting vulnerability exists in Hsycms version 3.1, which stems from a security issue in the file controllercate.php i...
Cross-site Scripting (XSS) - Stored in s-cart/s-cart
Description Stored XSS in S-Cart Version 6.8.3 affecting Product and Category module. Proof of Concept Product version: S-Cart Version 6.8.3 core 6.8.10 , https://github.com/s-cart/s-cart/releases/tag/v6.8.3 Vulnerability 1: Stored XSS In Product module 1 Endpoint: POST...