2 matches found
CVE-2025-53532
giscus is a commenting system powered by GitHub Discussions. A bug in giscus' discussions creation API allowed an unauthorized user to create discussions on any repository where giscus is installed. This affects the server-side part of giscus, which is provided via http://giscus.app or your own...
Stored Cross-Site Scripting Vulnerability at the Thinksaas Creation Repository
ThinkSAAS is a lightweight open source community system that can be used to build discussion groups, bbs and circles. A stored cross-site scripting vulnerability exists in Thinksaas version 2.5 at the creation repository, which can be exploited by remote attackers to inject arbitrary web script o...