6 matches found
EUVD-2025-176933
Malicious code in public-process-wind-debug-view npm...
Joomla! < 3.9.6 XSS Vulnerability
This VT has been deprecated due to the CVE already being covered by another script SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
umka.in.ua XSS vulnerability
Open Bug Bounty ID: OBB-649427 Description| Value ---|--- Affected Website:| umka.in.ua Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
python2-django: cross-site scripting
Unsafe usage of JavaScript's Element.innerHTML could result in XSS in the admin's add/change related popup. Element.textContent is now used to prevent execution of the data. The debug view also used innerHTML. Although a security issue wasn't identified there, out of an abundance of caution it's...
Debian DLA-555-1 : python-django security update
It was discovered that Django, a high-level Python web development framework, is prone to a cross-site scripting vulnerability in the admin's add/change related popup and debug view. For Debian 7 'Wheezy', these problems have been fixed in version 1.4.5-1+deb7u17. We recommend that you upgrade yo...
python-django: cross-site scripting
Unsafe usage of JavaScript's Element.innerHTML could result in XSS in the admin's add/change related popup. Element.textContent is now used to prevent execution of the data. The debug view also used innerHTML. Although a security issue wasn't identified there, out of an abundance of caution it's...