Atlassian Jira Cross-Site Scripting Vulnerability (CNVD-2021-13210)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A cross-site scripting vulnerability exists in Atlassian Jira Server and Data Center, which stems from a lack of proper validati...

Open Build Service Cross-Site Scripting Vulnerability

Open Build Service OBS is a general-purpose system for building and distributing packages from source code in an automated, consistent, and repeatable manner, organized by the Open Build Service. A cross-site scripting vulnerability exists in Open Build Service that stems from a lack of proper...

Mautic cross-site scripting vulnerability (CNVD-2021-12657)

Mautic is an open source marketing automation software. The software monitors and manages websites, sends emails and manages customer resources. A cross-site scripting vulnerability exists in Mautic, which stems from a lack of proper validation of client-side data by the WEB application. An...

Apache MyFaces Cross-Site Request Forgery Vulnerability

Apache MyFaces Trinidad is a U.S. Apache Apache Foundation contains a large number of enterprise-class component libraries and support for attachment JSF framework. A cross-site request forgery vulnerability exists in Apache MyFaces. The vulnerability stems from a lack of proper validation of...

Apache MyFaces Trinidad 跨站请求伪造漏洞

Apache MyFaces Trinidad is a U.S. Apache Apache Foundation contains a large number of enterprise-class component libraries and support for attachment JSF framework. A cross-site request forgery vulnerability exists in Apache MyFaces. The vulnerability stems from a lack of proper validation of...

F5 BIG-IP AFM 跨站脚本漏洞

F5 BIG-IP AFM is an advanced firewall product from F5 USA for protection against DDos attacks. A cross-site scripting vulnerability exists in BIG-IP AFM, which originates from the lack of proper validation of client data by a WEB application. An attacker can exploit this vulnerability to execute...

BIG-IP 跨站脚本漏洞

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A cross-site scripting vulnerability exists in BIG-IP, which stems from the lack of proper validation of client-side data by t...

McAfee McAfee Endpoint Security Cross-Site Scripting Vulnerability

Mcafee McAfee Endpoint Security ENS is a set of U.S. McAfee Mcafee company to provide intelligent collaboration and advanced threat defense framework. The framework supports control of the entire threat defense lifecycle for real-time communications and actionable threat forensics, among other...

Apache ActiveMQ Cross-Site Scripting Vulnerability (CNVD-2021-11837)

Apache ActiveMQ is the United States Apache Apache Foundation of a set of open source messaging middleware , which supports Java messaging services , clustering , Spring Framework and so on. A cross-site scripting vulnerability exists in Apache ActiveMQ versions 5.15.12 through 5.16.0, which stem...

Tufin SecureTrack R20-2 GA Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in the Tufin SecureTrack R20-2 GA that stems from a lack of proper validation of client-side data by a WEB application. An attacker can exploit this vulnerability to execute client-side code...

Phpgurukul Online Marriage Registration System Cross-Site Scripting Vulnerability

Phpgurukul Online Marriage Registration System is a website builder from the Phpgurukul team that supports online marriage registration. A cross-site scripting vulnerability exists in Phpgurukul Online Marriage Registration System, which stems from a lack of proper validation of client-side data ...

RainbowFish PacsOne Server Cross-Site Scripting Vulnerability

RainbowFish PacsOne Server is an image archiving and communication system server from RainbowFish Rainbowfish, which is used to save incoming images. A cross-site scripting vulnerability exists in versions of RainbowFish PacsOne Server prior to 7.1.1, which stems from the lack of proper validatio...

Nagios XI Cross-Site Scripting Vulnerability (CNVD-2021-09294)

Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. A cross-site scripting vulnerability exists in Nagios XI 5.8.0 in the Favorites component prior to version 1.0.2. An attacker could...

Cross-Site Scripting Vulnerability in Multiple NEC Aterm Products

The NEC Aterm WG2600HP and others are a wireless router from NEC Corporation of Japan. A cross-site scripting vulnerability exists in multiple Aterm products, which stems from a lack of proper validation of client-side data by the WEB application. The vulnerability can be exploited by an attacker...

OpenCATS Cross-Site Scripting Vulnerability (CNVD-2021-09918)

OpenCATS is a free open source candidate/applicant tracking system designed to allow recruiters to manage the hiring process from job posting and candidate application to candidate selection and submission. A cross-site scripting vulnerability exists in OpenCATS 0.9.5-3 and earlier versions. An...

OpenCats 跨站脚本漏洞

OpenCATS is a free open source candidate/applicant tracking system designed to allow recruiters to manage the hiring process from job posting and candidate application to candidate selection and submission. A cross-site scripting vulnerability exists in OpenCATS 0.9.5-3 and earlier versions. An...

WordPress plugin Custom Global Variables 'name' cross-site scripting vulnerability

WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. A cross-site scripting vulnerability exists in the WordPress plugin Custom Global Variables...

Wordpress Hashtagger Plugin Cross-Site Scripting Vulnerability

WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. A cross-site scripting vulnerability exists in the Wordpress Hashtagger plugin that stems...

Open-Xchange OX App Suite Cross-Site Scripting Vulnerability

Open-Xchange OX App Suite is an email client software from the German company Open-Xchange. A cross-site scripting vulnerability exists in OX App Suite version 7.10.4 and prior versions, which stems from a lack of proper validation of client-side data by the WEB application. An attacker can explo...

Sourcecodester Alumni Management System Cross-Site Scripting Vulnerability

Sourcecodester Alumni Management System is an alumni management system. Sourcecodester Alumni Management System suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in the web application, which can be exploited by an attacker to...