14 matches found
quark-auto-save 跨站脚本漏洞
Quark-auto-save is a personal development tool by Cp0204, designed for automatic transfer of data to a Quark Network drive and management of sign-ins. Versions of quark-auto-save prior to 0.8.5 contained a cross-site scripting vulnerability. This vulnerability stemmed from the use of the v-html...
libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment
A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential...
RHEL 10 : libsoup3 (RHSA-2026:15968)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:15968 advisory. Libsoup is an HTTP library implementation in C. It was originally part of a SOAP Simple Object Access Protocol implementation called Soup,...
RHEL 9 : libsoup (RHSA-2026:13978)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:13978 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Information disclosure via cleartext...
Mozilla Firefox < 68.10.1
The version of Firefox installed on the remote Windows host is prior to 68.10.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2020-27 advisory. - A Content Provider in Firefox for Android allowed local files accessible by the browser to be read by a remote webpage, leadi...
Linux Distros Unpatched Vulnerability : CVE-2022-1726
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to...
Design/Logic Flaw
Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties...
CVE-2021-3113
Netsia SEBA+ through 0.16.1 build 70-e669dcd7 allows remote attackers to discover session cookies via a direct /session/list/allActiveSession request. For example, the attacker can discover the admin's cookie if the admin account happens to be logged in when the allActiveSession request occurs, a...
CVE-2019-11084
GAuth 0.9.9 beta has stored XSS that shows a popup repeatedly and discloses cookies...
CVE-2019-11084
CVE-2019-11084 concerns GAuth 0.9.9 beta, with a stored XSS vulnerability that causes a popup to appear repeatedly and discloses cookies. The available connected sources identify the issue as a stored cross-site scripting flaw affecting GAuth 0.9.9 beta, but do not provide further product version...
CVE-2019-11084
GAuth 0.9.9 beta has stored XSS that shows a popup repeatedly and discloses cookies...
JVN#39519659: Sleipnir Mobile for Android vulnerable to arbitrary script execution
Sleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an arbitrary script execution vulnerability. Impact If a user uses a certain function of the affected product that called by other malicious Android application, an attacker may be able to execu...
SolarCMS 0.53.8 (Forum) Remote Cookies Disclosure Exploit
No description provided by source. ?php errorreporting0; / --------------------------------------------------------- SolarCMS 0.53.8 Forum Remote Cookies Disclosure Exploit --------------------------------------------------------- by athos - stakerathotmaildotit download on http://cms.maury91.org...
SolarCMS 0.53.8 (Forum) Remote Cookies Disclosure Exploit
Exploit for unknown platform in category web applications ========================================================= SolarCMS 0.53.8 Forum Remote Cookies Disclosure Exploit ========================================================= ?php errorreporting0; /...