CVE-2025-15249

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

EUVD-2025-205773

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

CVE-2025-15249

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

CVE-2025-15249 zhujunliang3 work_platform Content cross site scripting

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

CVE-2025-15249

CVE-2025-15249 concerns the zhujunliang3 work_platform, affecting the Content Handler component. Multiple sources indicate a cross-site scripting (XSS) weakness that can be exploited remotely by manipulating content. The affected release line is indicated as prior to version 6bc5a50bb527ce27f7906...

CVE-2025-15249 zhujunliang3 work_platform Content cross site scripting

A weakness has been identified in zhujunliang3 workplatform up to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31. This vulnerability affects unknown code of the component Content Handler. Executing manipulation can lead to cross site scripting. The attack may be performed from remote. This product...

work_platform 代码注入漏洞

workplatform is a development framework by zhujunliang personal developer. A code injection vulnerability exists in workplatform, which stems from an error in the component Content Handler that could lead to a cross-site scripting attack...

PT-2025-54175

Name of the Vulnerable Software and Affected Versions zhujunliang3 work platform versions prior to 6bc5a50bb527ce27f7906d11ea6ec139beb79c31 Description A cross site scripting issue exists in the Content Handler component of the software. The issue can be triggered remotely through manipulation. T...

EUVD-2019-11534

Malware in sbrugna...

EUVD-2023-12328

Malicious code in bioql PyPI...

EUVD-2024-46779

Malicious code in bioql PyPI...

EUVD-2024-50796

Malicious code in bioql PyPI...

XML Injection

Overview Affected versions of this package are vulnerable to XML Injection via the contenthandler.startElement call with missing sanitization. An attacker can manipulate input data by crafting dictionary keys that inject arbitrary XML elements or break the structure of the generated XML document...

CVE-2024-8949

A vulnerability classified as critical has been found in SourceCodester Online Eyewear Shop 1.0. This affects an unknown part of the file /classes/Master.php of the component Cart Content Handler. The manipulation of the argument cartid/id leads to improper ownership management. It is possible to...

CVE-2024-5590

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. This vulnerability affects unknown code of the file /protocol/iscuser/uploadiscuser.php of the component JSON Content Handler. The manipulation of the argument messagecontent leads to...

CVE-2023-0246

A vulnerability, which was classified as problematic, was found in earclink ESPCMS P8.21120101. Affected is an unknown function of the component Content Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2022-33879

The initial fixes in CVE-2022-30126 and CVE-2022-30973 for regexes in the StandardsExtractingContentHandler were insufficient, and we found a separate, new regex DoS in a different regex in the StandardsExtractingContentHandler. These are now fixed in 1.28.4 and 2.4.1...

CVE-2019-25097

A vulnerability was found in soerennb eXtplorer up to 2.1.12 and classified as critical. Affected by this issue is some unknown functionality of the component Directory Content Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The name o...

CVE-2024-12351

A vulnerability classified as critical has been found in JFinalCMS 1.0. This affects the function findPage of the file src\main\java\com\cms\entity\ContentModel.java of the component File Content Handler. The manipulation of the argument name leads to sql injection. It is possible to initiate the...

CVE-2024-12351

CVE-2024-12351 affects JFinalCMS 1.0 in the File Content Handler (ContentModel.java findPage). The root cause is manipulation of the argument name that leads to an SQL injection, allowing remote exploitation. Public references describe the issue as critical with high impact to confidentiality, in...