CVE-2023-26042 HTML/XSS injection possibilities in Part-DB

Part-DB is an open source inventory management system for your electronic components. User input was found not being properly escaped, which allowed malicious users to inject arbitrary HTML into the pages. The Content-Security-Policy forbids inline and external scripts so it is not possible to...

Fedora 14 : drupal7-7.6-1.fc14 (2011-9893)

Remember to log in as the admin user prior to RPM upgrade to perform DB upgrade. - Advisory ID: DRUPAL-SA-CORE-2011-003 - Project: Drupal core 1 - Version: 7.x - Date: 2011-July-27 - Security risk: Less critical 2 - Exploitable from: Remote - Vulnerability: Access bypass -------- DESCRIPTION Note...

Fedora 15 : drupal7-7.6-1.fc15 (2011-9845)

Remember to log in as the admin user prior to RPM upgrade to perform DB upgrade. - Advisory ID: DRUPAL-SA-CORE-2011-003 - Project: Drupal core 1 - Version: 7.x - Date: 2011-July-27 - Security risk: Less critical 2 - Exploitable from: Remote - Vulnerability: Access bypass -------- DESCRIPTION Note...

Fedora 14 : drupal7-7.4-1.fc14 (2011-8879)

Remember to log in as user 1 prior to the RPM update, to perform the DB upgrade via http://yoursite/update.php. - Advisory ID: DRUPAL-SA-CORE-2011-002 - Project: Drupal core 1 - Version: 7.x - Date: 2011-JUNE-29 - Security risk: Highly critical 2 - Exploitable from: Remote - Vulnerability: Access...