CloudBees Jenkins Build Pipeline Plugin Cross-Site Scripting Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . A cross-site scripting vulnerability exists in the CloudBees Jenkins Build Pipeline Plugin, which can be exploited by an attacker to execute client-side code...

CloudBees Jenkins Wall Display Plugin Cross-Site Scripting Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . A cross-site scripting vulnerability exists in CloudBees Jenkins Wall Display Plugin, which can be exploited by an attacker to execute client-side code...

WordPress newstatpress plugin cross-site scripting vulnerability (CNVD-2019-30372)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. newstatpress is a plugin used in it for real-time statistics on blog visits. A cross-site scripting vulnerability exists in the...

WordPress wp-live-chat-support plugin cross-site scripting vulnerability (CNVD-2019-27640)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. wp-live-chat-support plugin is a live chat plugin used in it. A cross-site scripting vulnerability exists in WordPress...

WordPress Ultimate Member plugin cross-site scripting vulnerability (CNVD-2019-27689)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Ultimate Member plugin is one of the plugins used to create member sites or online communities. A cross-site scripting vulnerability...

WordPress woocommerce-pdf-invoices-packing-slips plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site. woocommerce-pdf-invoices-packing-slips plugin is used in one of the invoices sent for e-commerce plugin. A cross-site...

WordPress wp-database-backup plugin cross-site scripting vulnerability (CNVD-2019-27696)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-database-backup plugin is a database backup and restore plugin used in it. A cross-site scripting vulnerability exists i...

WordPress Ultimate Member plugin cross-site scripting vulnerability (CNVD-2019-27693)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Ultimate Member plugin is one of the plugins used to create member sites or online communities. A cross-site scripting vulnerability...

Atlassian Jira Cross-Site Scripting Vulnerability (CNVD-2019-27253)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A cross-site scripting vulnerability exists in the activity stream gadget in Atlassian Jira versions prior to 7.13.1. The...

idreamsoft iCMS Cross-Site Scripting Vulnerability (CNVD-2020-17020)

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A cross-site scripting vulnerability exists in idreamsoft iCMS version 7.0.15, which stems from a lack of proper validation of client-side data in the WEB application and can be exploited by an attacker to...

WordPress 10Web Photo Gallery plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.10Web Photo Gallery plugin is an image management plugin used in it. A cross-site scripting vulnerability exists in the...

WordPress Appointment Booking Calendar plugin cross-site scripting vulnerability (CNVD-2019-27684)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Appointment Booking Calendar is a booking plugin used in it. A cross-site scripting vulnerability exists in the WordPress Appointment...

WordPress FV Flowplayer Video Player plugin cross-site scripting vulnerability (CNVD-2019-27687)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.FV Flowplayer Video Player is a video player plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

Backdrop CMS Cross-Site Scripting Vulnerability (CNVD-2019-26880)

Backdrop CMS is an open source content management system CMS. A cross-site scripting vulnerability exists in Backdrop CMS version 1.12.x before 1.12.8 and version 1.13.x before 1.13.3. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker...

HPE 3PAR StoreServ Management Console Script Injection Vulnerability

The HPE 3PAR StoreServ Management Console SSMC is the HPE 3PAR management and reporting console that provides converged file and block management on HPE 3PAR StoreServ storage systems. A script injection vulnerability exists in HPE 3PAR StoreServ Management Console 3.5.0. An attacker could exploi...

cPanel cross-site scripting vulnerability (CNVD-2019-26832)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in cPanel versions prior to 60.0.25. The vulnerability stems from a lack of proper...

Cisco Firepower Management Center Cross-Site Scripting Vulnerability (CNVD-2019-36206)

Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. A cross-site scripting vulnerability exists in Cisco Firepower Management Center. An attacker could exploit this vulnerability to execute client-side code...

cPanel cross-site scripting vulnerability (CNVD-2019-30463)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in the Webmail Password and Security page in versions prior to cPanel 62.0.4. The...

Amazon Pay Plugin for EC-CUBE Cross-Site Scripting Vulnerability

Amazon Pay Plugin for EC-CUBE is an online payment plugin for EC-CUBE, a suite of e-commerce systems. A cross-site scripting vulnerability exists in Amazon Pay Plugin for EC-CUBE, which can be exploited by attackers to execute client-side code...

cPanel cross-site scripting vulnerability (CNVD-2019-30462)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in the WHM Account Suspension List interface in versions prior to cPanel 62.0.4. The...