36 matches found
EUVD-2020-20606
Malware in sbrugna...
EUVD-2024-52760
Malicious code in bioql PyPI...
CVE-2020-28119
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...
CVE-2024-55272
An issue in Brainasoft Braina v2.8 allows a remote attacker to obtain sensitive information via the chat window function...
CVE-2024-55272
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2024-55272
An issue in Brainasoft Braina v2.8 allows a remote attacker to obtain sensitive information via the chat window function...
Braina 安全漏洞
Braina is an intelligent personal assistant software for Windows PCs from Braina that allows you to interact with your computer using voice commands. A security vulnerability exists in Braina version v2.8, which originates from a remote attacker obtaining sensitive information through the chat...
CVE-2024-55272
An issue in Brainasoft Braina v2.8 allows a remote attacker to obtain sensitive information via the chat window function...
CVE-2022-20631
A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device. The vulnerability exists because the web-based management interface does not properly validate...
CVE-2022-35251
A cross-site scripting vulnerability exists in Rocket.chat v5 due to style injection in the complete chat window, an adversary is able to manipulate not only the style of it, but will also be able to block functionality as well as hijacking the content of targeted users. Hence the payloads are...
Malicious code in @dgtls/allianz-chat-window (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a8abdec13c4b20352e0089439f69c26d650bab72205190b1710aba158da27402 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
PT-2022-1430 · Cisco · Cisco Ece
Name of the Vulnerable Software and Affected Versions: Cisco ECE affected versions not specified Description: A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the...
Cross-site Scripting (XSS) - Stored in meetecho/janus-gateway
Description The stored XSS vulnerability occurs in the chat window because the user's input value is inserted into the web page without verification. javascript to: username, text: result ; textroom.data text: JSON.stringifymessage, error: functionreason bootbox.alertreason; , success: function...
CVE-2020-28119
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...
CVE-2020-28119
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...
Cross site scripting
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...
CVE-2020-28119
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...
53Kf 跨站脚本漏洞
Zhejiang Express Service 53Kf is an online customer service system from the Chinese company Zhejiang Express Service. A cross-site scripting vulnerability exists in 53KF, which is caused by the product's chat window not validating user input. The vulnerability can be exploited to cause client-sid...
CVE-2020-27154
The chat window of Mitel BusinessCTI Enterprise MBC-E Client for Windows before 6.4.11 and 7.x before 7.0.3 could allow an attacker to gain access to user information by sending arbitrary code, due to improper input validation. A successful exploit could allow an attacker to view the user...
Mitel BusinessCTI Enterprise Client Input Validation Error Vulnerability
Mitel Networks BusinessCTI Enterprise is an employee communication software for attendance management and instant messaging from Mitel Networks Canada. An input validation error vulnerability exists in the Windows-based Mitel BusinessCTI Enterprise MBC-E Client Chat Window versions prior to 6.4.1...