12 matches found
Astra Linux - уязвимость в firefox
Firefox’s HTML parser did not correctly interpret HTML comment tags, leading to inconsistencies with other browsers. This vulnerability could have been exploited to embed user-controlled data within HTML comments on pages. This issue affects Firefox versions prior to 101...
AlmaLinux 10 : httpd (ALSA-2025:15095)
The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:15095 advisory. httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TL...
CVE-2024-47252 Apache HTTP Server: mod_ssl error log variable escaping
Insufficient escaping of user-supplied data in modssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%varnamex" or "%varnamec" to log variables...
CVE-2022-3558
CVE-2022-3558 affects the WordPress plugin Import and export users and customers, prior to version 1.20.5. The vulnerability arises from improper escaping of data when exporting to CSV, which enables CSV injection. The issue is demonstrated by a PoC showing crafted data (e.g., nickname payload) e...
WordPress WooCommerce-Product Importer plugin跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress WooCommerce-Product Importer plugin, which...
Improper Neutralization of Formula Elements in a CSV File in Gradio Flagging
Impact The gradio library has a flagging functionality which saves input/output data into a CSV file on the developer's computer. This can allow a user to save arbitrary text into the CSV file, such as commands. If a program like MS Excel opens such a file, then it automatically runs these...
Cookie Information < 2.0.8 - Reflected Cross-Site Scripting
The plugin does not escape user data before outputting it back in attributes in the admin dashboard, leading to a Reflected Cross-Site Scripting issue PoC https://example.com/wp-admin/admin.php?page=wp-gdpr-compliance=%27+onanimationstart%3Dalert%28/XSS/%29+style%3Danimation-name%3Arotation+x...
Mozilla Thunderbird, Firefox ESR and Firefox Information Disclosure Vulnerabilities
Mozilla Firefox and others are products of the Mozilla Foundation in the U.S.A. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser.Mozilla Thunderbird is a suite of e-mail client software separate from the Mozilla Application...
Hardcoded credentials
The PSFTPd 10.0.4 Build 729 server does not properly escape data before writing it into a Comma Separated Values CSV file. This can be used by attackers to hide data in the Graphical User Interface GUI view and create arbitrary entries to a certain extent. Special characters such as '"' and ',' a...
bluecms v1. 6 Sql Injection analysis-vulnerability warning-the black bar safety net
Long time no code audit, take a simple look feel. bluecms is a comparison of the old portal cms, online also has a lot about its vulnerability has not been patched, so the following vulnerability is also not really up to date, just when practicing hand. SQL injectionanalysis First look at the dat...
File Inclusion Vulnerability in Zblog
Zblog is based on the Asp platform Blog blog weblog program. Zblog has a file inclusion vulnerability. zbinstall/index.php does not escape POST, and an attacker can truncate the .php that follows...
phpdisk V7 (20140604) 注入一枚 (直接出数据)
简要描述: 20140604 详细说明: 在ajax.php中 else $file = unserializebase64decode$data; /foreach$file as $k=$v $file$k = $db-escape$file$v; / $filefileid = int$filefileid; $filefilesize = int$filefilesize; $filefiledescription = $db-escapetrim$filefiledescription; $filefileextension =...