15 matches found
EUVD-2021-11746
Malware in sbrugna...
EUVD-2023-41045
Malicious code in bioql PyPI...
PortlandLabs Concrete CMS Custom Label Fields Cross-Site Scripting Vulnerability
PortlandLabs Concrete CMS is a team-oriented open source content management system of the United States PortlandLabs company . A cross-site scripting vulnerability exists in the PortlandLabs Concrete CMS Custom Label field. The vulnerability stems from the lack of effective filtering and escaping...
PortlandLabs Concrete CMS 跨站脚本漏洞
PortlandLabs Concrete CMS is a team-oriented open source content management system of the United States PortlandLabs company . A cross-site scripting vulnerability exists in the PortlandLabs Concrete CMS Custom Label field. The vulnerability stems from the lack of effective filtering and escaping...
CVE-2023-37125
A stored cross-site scripting XSS vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2023-37125
A stored cross-site scripting XSS vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2023-37125
A stored cross-site scripting XSS vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
Cross site scripting
A stored cross-site scripting XSS vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2023-37125
A stored cross-site scripting XSS vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2023-37125
A stored cross-site scripting XSS vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
SEACMS 跨站脚本漏洞
SeaCMS is a free and open source web content management system written in PHP. The system is primarily designed to manage video-on-demand resources. A security vulnerability exists in SEACMS version v12.1, which stems from a stored cross-site scripting XSS vulnerability in the Management Custom...
FreeBSD : roundcube-thunderbird_labels -- RCE with custom label titles (127674c6-4a27-11ed-9f93-002b67dfc673)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 127674c6-4a27-11ed-9f93-002b67dfc673 advisory. - The Roundcube project reports: Remote code execution vulnerability in roundcube- thunderbirdlabels wh...
roundcube-thunderbird_labels -- RCE with custom label titles
The Roundcube project reports: Description: Remote code execution vulnerability in roundcube-thunderbirdlabels when tblabelmodifylabels is enabled. Workaround: If you cannot upgrade to roundcube-thunderbirdlabels-1.4.13 disable the tblabelmodifylabels config option...
Silicon Graphics LibTIFF 缓冲区错误漏洞
Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains some command line tools for working with TIFF files. A security vulnerability exists in Silicon Graphics LibTIFF 4.3.0, which stems from a read...
CVE-2021-24834
The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability which exists in the Create Poll - Options module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. This vulnerability is...