Lucene search
K

4 matches found

CNNVD
CNNVD
added 2024/01/16 12:0 a.m.6 views

WordPress plugin ark-commenteditor security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS7AI score0.00608EPSS
Exploits1References2
seebug.org
seebug.org
added 2014/06/06 12:0 a.m.16 views

phpok存储型xss一枚

简要描述: rt 详细说明: PHPOK4.0.556 漏了评论处的 编码转换。 $content = $this-get"content",'html'; type为 html的话 case 'html':$msg = pregreplace$tmp,'',$msg;break; 只过滤了 $tmp = array"//isU","//isU","//isU","//isU","//isU","//isU","//isU","//isU"; 太弱。 审核评论 alert 可获取 浏览该商品的 用户的cookie 以及后台审核时 管理员的 cookie 漏洞证明:...

7.1AI score
Exploits0
CVE
CVE
added 2005/09/26 4:0 a.m.68 views

CVE-2005-3059

CVE-2005-3059 affects Opera 8.50 on Linux and Windows. The vulnerabilities are described as multiple unspecified issues tied to (1) handling of the must-revalidate cache directive for HTTPS pages and (2) a cookie comment encoding display issue. The connected documents do not provide concrete expl...

10CVSS7.3AI score0.02237EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2005/09/26 4:0 a.m.29 views

CVE-2005-3059

Multiple unspecified vulnerabilities in Opera 8.50 on Linux and Windows have unknown impact and attack vectors, related to 1 " handling of must-revalidate cache directive for HTTPS pages" or 2 a "display issue with cookie comment encoding."...

6.9AI score0.02237EPSS
Exploits0References4
Rows per page
Query Builder