4 matches found
CVE-2018-25050
creationtimestamp| type| source ---|---|--- 2022-12-28 12:12:11+00:00| seen| https://t.me/cibsecurity/55463 2025-04-10 20:49:35+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11339...
CVE-2018-25050 Harvest Chosen abstract-chosen.coffee AbstractChosen cross site scripting
A vulnerability, which was classified as problematic, has been found in Harvest Chosen up to 1.8.6. Affected by this issue is the function AbstractChosen of the file coffee/lib/abstract-chosen.coffee. The manipulation of the argument grouplabel leads to cross site scripting. The attack may be...
CVE-2018-25050
Harvest Chosen up to 1.8.6 contains a cross-site scripting (XSS) flaw in the AbstractChosen function (coffee/lib/abstract-chosen.coffee). Manipulation of the group_label argument enables the vulnerability, which is exploitable remotely. A fix is available in version 1.8.7; upgrading addresses the...
CVE-2018-25050 Harvest Chosen abstract-chosen.coffee AbstractChosen cross site scripting
A vulnerability, which was classified as problematic, has been found in Harvest Chosen up to 1.8.6. Affected by this issue is the function AbstractChosen of the file coffee/lib/abstract-chosen.coffee. The manipulation of the argument grouplabel leads to cross site scripting. The attack may be...