Pimcore 跨站脚本漏洞

Pimcore is an open source Web content management platform for creating and managing Web applications from Pimcore Austria. The platform integrates Web content management, e-commerce frameworks and product information management applications.Pimcore has a cross-site scripting vulnerability that...

Microweber 跨站脚本漏洞

Microweber is an online store management system from the Microweber community in the United States that provides drag-and-drop functionality. The system includes modules for adding products, images, etc. A cross-site scripting vulnerability exists in microweber, which stems from the product's...

SPIP interfaces.php cross-site scripting vulnerability

SPIP is a web-based content publishing system. A cross-site scripting vulnerability exists in SPIP, which stems from a lack of proper validation of client-side data in the interfaces.php component of the WEB application. An attacker could exploit this vulnerability to execute client-side code...

livehelperchat cross-site scripting vulnerability (CNVD-2022-08146)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. Livehelperchat has a cross-site scripting vulnerability in version 3.93 that stems from the lack of proper validation of client-side data in the WEB application. An attacker can...

livehelperchat 跨站脚本漏洞

livehelperchat is a chat via a live helper that provides free live support on a website. A security vulnerability exists in livehelperchat that stems from the WEB application's lack of proper validation of client data. An attacker can exploit the vulnerability to execute client-side code...

pimcore Cross-Site Scripting Vulnerability (CNVD-2022-08371)

Pimcore is an open source Web content management platform for creating and managing Web applications from the Austrian company Pimcore. The platform integrates Web content management, e-commerce frameworks and product information management applications. pimcore has a cross-site scripting...

livehelperchat 跨站脚本漏洞

livehelperchat is a chat via a live helper that provides free live support on a website. A cross-site scripting vulnerability exists in livehelperchat that stems from the presence of xss in Packagist remdex livehelperchat prior to 3.93v. An attacker could exploit this vulnerability to execute...

Pimcore 跨站脚本漏洞

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates applications for Web content management, e-commerce frameworks and product information management. pimcore suffers from a cross-site scriptin...

UBUNTU-CVE-2021-44118

SPIP 4.0.0 is affected by a Cross Site Scripting XSS vulnerability. To exploit the vulnerability, a visitor must browse to a malicious SVG file. The vulnerability allows an authenticated attacker to inject malicious code running on the client side into web pages visited by other users stored XSS...

livehelperchat 跨站脚本漏洞

livehelperchat is a chat via a live helper that provides free live support on a website. A cross-site scripting vulnerability exists in livehelperchat, which stems from a lack of proper validation of client data by the WEB application in Packagist remdex/livehelperchat in 3.93. An attacker can...

SPIP 跨站脚本漏洞

SPIP is a Web-based content publishing system. A cross-site scripting vulnerability exists in SPIP, which stems from the lack of proper validation of client-side data by the WEB application. An attacker could exploit the vulnerability to execute client-side code...

phpMyAdmin 跨站脚本漏洞

phpMyAdmin is a free, web-based MySQL database management tool from the Phpmyadmin team. The tool is capable of creating and deleting databases, creating, deleting and modifying database tables, executing SQL script commands, etc. phpMyAdmin suffers from a cross-site scripting vulnerability that...

chaskiq Cross-Site Scripting Vulnerability (CNVD-2022-08227)

Chaskiq is an open source messaging platform. It is used for marketing, support and sales. chaskiq suffers from a cross-site scripting vulnerability that stems from the fact that chaskiq is vulnerable to input errors during web page generation "cross-site scripting". An attacker could exploit thi...

Chaskiq 跨站脚本漏洞

Chaskiq is an open source messaging platform. It is used for marketing, support and sales. chaskiq suffers from a cross-site scripting vulnerability that stems from the fact that chaskiq is vulnerable to input errors during web page generation "cross-site scripting". An attacker could exploit thi...

scratch-svg-renderer cross-site scripting vulnerability

scratch-svg-renderer is a code library used by the Scratch team to convert SVG to DOM elements. scratch-Svg-Renderer suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in WEB applications, which can be exploited to execute client-si...

Practo Technologies Insta Hms跨站脚本漏洞

Practo Technologies Insta Hms is a hospital information system from Practo Technologies, India. Practo Technologies Insta HMS has a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in the WEB application, which can be exploited by attackers to...

DayByDay CRM Cross-Site Scripting Vulnerability (CNVD-2022-68549)

DayByDay CRM is an open source CRM Customer Relationship Management software, based on Laravel, that helps users keep track of clients, tasks, meetings and more. A cross-site scripting vulnerability exists in DayByDay CRM. The vulnerability stems from the title field of a new task in the product...

Bludit 跨站脚本漏洞

A cross-site scripting vulnerability exists in Bludit, an open source lightweight blog content management system CMS, which stems from a tag section in the product's login panel that does not validate input data. An attacker could execute client-side code through this vulnerability...

Dmp Roadmap Cross-Site Scripting Vulnerability

Dmp Roadmap is a data management planning tool. a cross-site scripting vulnerability exists in Dmp Roadmap, which stems from the DMP roadmap prior to 3.0.4 and allows XSS. an attacker could exploit this vulnerability to execute client-side code...

Daybyday CRM 跨站脚本漏洞

DayByDay CRM is an open source CRM Customer Relationship Management software, based on Laravel, that helps users keep track of clients, tasks, meetings and more. A cross-site scripting vulnerability exists in DayByDay CRM. The vulnerability stems from the title field of a new task in the product...