5 matches found
CVE-2020-27511
An issue was discovered in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service ReDOS through stripping crafted HTML tags...
UBUNTU-CVE-2020-27511
An issue was discovered in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service ReDOS through stripping crafted HTML tags...
CVE-2020-27511
An issue was discovered in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service ReDOS through stripping crafted HTML tags...
CVE-2006-3366
Multiple cross-site scripting XSS vulnerabilities in V3 Chat allow remote attackers to inject arbitrary web script or HTML via crafted HTML tags, as demonstrated by the IMG tag, in the 1 id parameter in a mail/index.php and b mail/reply.php; 2 loginid parameter in c members/isonline.php; 3 siteid...
CVE-2006-3366
Vulnerability: CVE-2006-3366 affects V3 Chat. Description confirms multiple cross-site scripting (XSS) vulnerabilities where crafted HTML tags injected via user-supplied parameters can lead to script/HTML execution. Specifically vulnerable parameters include id (in mail/index.php and mail/reply.p...