10 matches found
CVE-2023-3506
A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input leads to cross sit...
CVE-2022-47073
A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...
CVE-2023-3506
A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input alert1 leads to...
CVE-2023-3506
A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input alert1 leads to...
Cross site scripting
A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input alert1 leads to...
CVE-2022-47073
A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...
Small CRM 跨站脚本漏洞
PHPGurukul Small CRM is a customer relationship management system. A security vulnerability exists in Small CRM v3.0, which stems from the Subject parameter of its Create Ticket page that allows an attacker to inject a crafted payload to execute arbitrary web script and HTML...
CVE-2022-47073
A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...
PT-2023-15153 · Small Crm · Small Crm
Name of the Vulnerable Software and Affected Versions: Small CRM version 3.0 Description: A cross-site scripting XSS issue in the Create Ticket page allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter. This enables attackers to...