18 matches found
CVE-2026-7545 SourceCodester Advanced School Management System checkEmail Endpoint commonController.php sql injection
A weakness has been identified in SourceCodester Advanced School Management System 1.0. The affected element is an unknown function of the file commonController.php of the component checkEmail Endpoint. This manipulation causes sql injection. Remote exploitation of the attack is possible. The...
CVE-2016-10934
The check-email plugin before 0.5.2 for WordPress has XSS...
EUVD-2016-1925
Malware in sbrugna...
CVE-2023-47308
In the module "Newsletter Popup PRO with Voucher/Coupon code" newsletterpop before version 2.6.1 from Active Design for PrestaShop, a guest can perform SQL injection in affected versions. The method NewsletterpopsendVerificationModuleFrontController::checkEmailSubscription has sensitive SQL calls...
CVE-2023-47308
In the module "Newsletter Popup PRO with Voucher/Coupon code" newsletterpop before version 2.6.1 from Active Design for PrestaShop, a guest can perform SQL injection in affected versions. The method NewsletterpopsendVerificationModuleFrontController::checkEmailSubscription has sensitive SQL calls...
CVE-2022-43018
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the email parameter in the Check Email function...
CVE-2022-43018
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the email parameter in the Check Email function...
Cross site scripting
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the email parameter in the Check Email function...
CVE-2022-43018
OpenCATS v0.9.6 is affected by a reflected XSS in the Check Email function via the email parameter. The root cause is insufficient input validation, allowing an attacker to inject script in a user’s browser and potentially steal session cookies. Documented impacts include cookie theft and related...
CVE-2022-43018
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the email parameter in the Check Email function...
OpenCats 跨站脚本漏洞
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats v0.9.6, which stems from a security issue with the email parameter in the Check Email feature. No details of the vulnerability are provided at this time...
CVE-2022-43018
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the email parameter in the Check Email function...
PT-2022-7072 · Opencats · Opencats
Name of the Vulnerable Software and Affected Versions: OpenCATS version 0.9.6 Description: The issue is related to a reflected cross-site scripting XSS vulnerability in the Check Email function of OpenCATS. This vulnerability can be exploited via the email parameter, potentially allowing a remote...
WordPress check-email plugin cross-site scripting vulnerability
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress check-email plugin versions prior to 0.5.2. The...
CVE-2016-10934
The check-email plugin before 0.5.2 for WordPress has XSS...
CVE-2016-10934
The check-email plugin before 0.5.2 for WordPress has XSS...
CVE-2016-10934
CVE-2016-10934 affects the WordPress Check Email plugin prior to 0.5.2, with an XSS vulnerability stemming from insufficient validation of client-side data. Exploitation could involve remote access with network access and requires user interaction per CVSS details; impact is limited to client-sid...
CVE-2008-3768
Multiple SQL injection vulnerabilities in class.ajax.php in Turnkey Web Tools SunShop Shopping Cart before 4.1.5 allow remote attackers to execute arbitrary SQL commands via 1 the id parameter in an editregistry action to index.php, 2 a vector involving the checkemail function, and other vectors...