9 matches found
CVE-2026-23839
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is ?categoryUpdated=. Version 0.70.0 fixes the issue...
CVE-2026-23839
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is ?categoryUpdated=. Version 0.70.0 fixes the issue...
CVE-2026-23839
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is ?categoryUpdated=. Version 0.70.0 fixes the issue...
EUVD-2026-3302
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is ?categoryUpdated=. Version 0.70.0 fixes the issue...
CVE-2026-23839
CVE-2026-23839 affects Movary, a web application to track and rate movie watch history. The issue arises from insufficient input validation that enables cross-site scripting via the vulnerable parameter ?categoryUpdated= in versions prior to 0.70.0. Version 0.70.0 fixes the issue. References from...
CVE-2026-23839 Movary vulnerable to Cross-site Scripting with `?categoryUpdated=` param
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is ?categoryUpdated=. Version 0.70.0 fixes the issue...
CVE-2026-23839 Movary vulnerable to Cross-site Scripting with `?categoryUpdated=` param
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is ?categoryUpdated=. Version 0.70.0 fixes the issue...
PT-2026-3480
Name of the Vulnerable Software and Affected Versions Movary versions prior to 0.70.0 Description Movary is a web application used to track and rate movie watch history. Insufficient input validation allows attackers to trigger cross-site scripting payloads. The vulnerable parameter is...
Movary cross-site scripting vulnerabilities
Movary is a film review program developed by Lee Peuker personally. Versions of Movary prior to 0.70.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from insufficient input validation for the categoryUpdated parameter, which could lead to cross-site scripting attacks...