6 matches found
CVE-2020-19204
An authenticated Stored Cross-Site Scriptiong XSS vulnerability exists in Lightning Wire Labs IPFire 2.21 x8664 - Core Update 130 in the "routing.cgi" Routing Table Entries via the "Remark" text box or "remark" parameter. It allows an authenticated WebGUI user to execute Stored Cross-site Scripti...
CVE-2020-19511
Cross Site Scriptiong vulnerability in Typesetter 5.1 via the !1 className and !2 Description fields in index.php/Admin/Classes,...
CVE-2020-19511
CVE-2020-19511 affects Typesetter 5.1. The vulnerability is a cross-site scripting (XSS) flaw exploitable via the index.php/Admin/Classes interface, specifically through the className and Description fields. Descriptions across multiple connected sources confirm the editable fields in the admin U...
CVE-2020-21053
Cross Site Scriptiong XSS vulnerability exists in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "querystring" variable in app\devices\deviceimports.php...
CVE-2020-21101
Cross Site Scriptiong vulnerabilityin Screenly screenly-ose all versions, including v1.8.2 2019-09-25-Screenly-OSE-lite.img, in the 'Add Asset' page via manipulation of a 'URL' field, which could let a remote malicious user execute arbitrary code...
CVE-2020-21101
Cross Site Scriptiong vulnerabilityin Screenly screenly-ose all versions, including v1.8.2 2019-09-25-Screenly-OSE-lite.img, in the 'Add Asset' page via manipulation of a 'URL' field, which could let a remote malicious user execute arbitrary code...