couleur-soleil.fr Cross Site Scripting vulnerability OBB-2331844

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

SPIP parameter improper validation vulnerability

SPIP, an Internet publishing system, is free software distributed under the General Public License GPL. prive/formulaires/configurerpreferences.php in versions of SPIP prior to 3.2.8 is vulnerable to couleur, display, display navigation, displayoutils, imessage, and spipecran parameters are...

UBUNTU-CVE-2020-28984

prive/formulaires/configurerpreferences.php in SPIP before 3.2.8 does not properly validate the couleur, display, displaynavigation, displayoutils, imessage, and spipecran parameters...

SPIP 安全漏洞

SPIP, an Internet publishing system, is free software distributed under the General Public License GPL. prive/formulaires/configurerpreferences.php in versions of SPIP prior to 3.2.8 is vulnerable to couleur, display, display navigation, displayoutils, imessage, and spipecran parameters are...

CVE-2018-20848

Advisto PEEL SHOPPING 9.0.0 has CSRF via en/achat/caddieajout.php and en/achat/caddieaffichage.php, as demonstrated by an XSS payload in the couleurId0 parameter to the latter...