4 matches found
EUVD-2023-38457
Malicious code in bioql PyPI...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Joseph C Dolson My Content Management plugin = 1.7.6 versions...
CVE-2010-0997
Cross-site scripting XSS vulnerability in 107plugins/content/contentmanager.php in the Content Management plugin in e107 before 0.7.20, when the personal content manager is enabled, allows user-assisted remote authenticated users to inject arbitrary web script or HTML via the contentheading...
CVE-2010-0997
The CVE-2010-0997 entry covers an XSS vulnerability in the e107 Content Management plugin, specifically in 107_plugins/content/content_manager.php when the Personal Content Manager is enabled. The underlying issue is insufficient sanitization of the content_heading parameter, allowing user-assist...