itsourcecode Online Tour and Travel Management 注入漏洞

itsourcecode Online Tour and Travel Management is itsourcecode open source an online tour and travel management system . An injection vulnerability exists in itsourcecode Online Tour and Travel Management version 1.0, which originates from a SQL injection due to incorrect manipulation of the...

Vulnerability of the Currency.php script (phpoffice/phpspreadsheet/samples/Wizards/NumberFormat/Currency.php) in the PHP library PhpSpreadsheett, which allows attackers to perform cross-site scripting attacks

The vulnerability in the Currency.php script phpoffice/phpspreadsheet/samples/Wizards/NumberFormat/Currency.php of the PhpSpreadsheet library involves a lack of measures to protect web page structures. Exploiting this vulnerability allows an attacker to perform cross-site scripting attacks remote...

CVE-2024-56409

CVE-2024-56409 concerns PhpSpreadsheet, a PHP library for spreadsheet handling. The vulnerability affects the vulnerable component in the Currency.php sample, where the currency parameter is not sanitized, allowing an unauthorized reflected cross-site scripting (XSS) attack when an attacker submi...