55 matches found
CVE-2023-43951
SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Column Management component...
CVE-2023-49485
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the column management department...
EUVD-2019-18402
Malware in sbrugna...
CVE-2025-60453
A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the column management module, specifically in the app\system\column\admin\index.class.php component. The vulnerability allows attackers to upload malicious SVG files...
EUVD-2025-32301
Malicious code in bioql PyPI...
EUVD-2022-38944
Malicious code in bioql PyPI...
EUVD-2023-3192
Malicious code in bioql PyPI...
EUVD-2023-48311
Malicious code in bioql PyPI...
CVE-2025-60453
A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the column management module, specifically in the app\system\column\admin\index.class.php component. The vulnerability allows attackers to upload malicious SVG files...
CVE-2025-60453
A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the column management module, specifically in the app\system\column\admin\index.class.php component. The vulnerability allows attackers to upload malicious SVG files...
CVE-2025-60453
A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the column management module, specifically in the app\system\column\admin\index.class.php component. The vulnerability allows attackers to upload malicious SVG files...
CVE-2025-60453
A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the column management module, specifically in the app\system\column\admin\index.class.php component. The vulnerability allows attackers to upload malicious SVG files...
CVE-2025-60453
MetInfo CMS 8.0 is affected in the column management module (app\system\column\admin\index.class.php). The issue is a stored XSS vulnerability that allows attackers to upload SVG files containing JavaScript, which executes when the uploaded file is viewed or accessed by users. This aligns with mu...
Cross-site Scripting (XSS)
jfinal is vulnerable to Cross-site Scripting XSS. The vulnerability exists in the column management department of the library, allowing an attacker to inject and execute malicious JavaScript...
Cross-site Scripting in JFinalCMS
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the column management department...
GHSA-F2W8-4M48-5QRQ Cross-site Scripting in JFinalCMS
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the column management department...
CVE-2023-49485
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the column management department...
CVE-2023-49485
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the column management department...
Cross site scripting
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the column management department...
CVE-2023-49485
JFinalCMS v5.0.0 was discovered to contain a cross-site scripting XSS vulnerability in the column management department...