12 matches found
EUVD-2023-0363
Malicious code in bioql PyPI...
CVE-2016-15022
A vulnerability was found in mosbth cimage up to 0.7.18. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file checksystem.php. The manipulation of the argument $SERVER'SERVERSOFTWARE' leads to cross site scripting. The attack can be launched...
Cross-Site Scripting (XSS)
mos/cimage is vulnerable to Cross-Site Scripting XSS attacks. The library does not properly escape the user input before it output to the front end, allowing an attacker to inject and execute malicious JavaScript on victim's browser via the argument $SERVER'SERVERSOFTWARE' in the file...
GHSA-6HV3-9FQX-8PG5 CImage Cross-site Scripting vulnerability
A vulnerability was found in mosbth cimage up to 0.7.18. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file checksystem.php. The manipulation of the argument $SERVER'SERVERSOFTWARE' leads to cross site scripting. The attack can be launched...
CVE-2016-15022
A vulnerability was found in mosbth cimage up to 0.7.18. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file checksystem.php. The manipulation of the argument $SERVER'SERVERSOFTWARE' leads to cross site scripting. The attack can be launched...
CVE-2016-15022
A vulnerability was found in mosbth cimage up to 0.7.18. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file checksystem.php. The manipulation of the argument $SERVER'SERVERSOFTWARE' leads to cross site scripting. The attack can be launched...
Cross site scripting
A vulnerability was found in mosbth cimage up to 0.7.18. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file checksystem.php. The manipulation of the argument $SERVER'SERVERSOFTWARE' leads to cross site scripting. The attack can be launched...
CVE-2016-15022 mosbth cimage check_system.php cross site scripting
A vulnerability was found in mosbth cimage up to 0.7.18. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file checksystem.php. The manipulation of the argument $SERVER'SERVERSOFTWARE' leads to cross site scripting. The attack can be launched...
CVE-2016-15022
CVE-2016-15022 affects mosbth cimage up to version 0.7.18. The vulnerability is in check_system.php: manipulating $_SERVER['SERVER_SOFTWARE'] can trigger cross-site scripting. The issue can be exploited remotely and, according to sources, exploitation is difficult but feasible. Upgrading to 0.7.1...
CVE-2016-15022 mosbth cimage check_system.php cross site scripting
A vulnerability was found in mosbth cimage up to 0.7.18. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file checksystem.php. The manipulation of the argument $SERVER'SERVERSOFTWARE' leads to cross site scripting. The attack can be launched...
PT-2023-10341 · Unknown · Mosbth Cimage
Name of the Vulnerable Software and Affected Versions: mosbth cimage versions up to 0.7.18 Description: A vulnerability was found in mosbth cimage, affecting an unknown functionality of the file check system.php. The manipulation of the argument $ SERVER'SERVER SOFTWARE' leads to cross site...
cimage 跨站脚本漏洞
cimage is an application by Mikael Roos personal developer. It is used for server-side image resizing and dynamic cropping, and uses PHP to cache generated image files. A cross-site scripting vulnerability exists in cimage, which stems from a parameter in checksystem.php that causes cross-site...