6 matches found
EUVD-2020-21612
Malware in sbrugna...
CVE-2024-28678
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the component /dede/articledescriptionmain.php...
CVE-2024-51379
Stored Cross-Site Scripting XSS vulnerability discovered in JATOS v3.9.3. The vulnerability exists in the description component of the study section, where an attacker can inject JavaScript into the description field. This allows for the execution of malicious scripts when an admin views the...
CVE-2024-51379
Stored Cross-Site Scripting XSS vulnerability discovered in JATOS v3.9.3. The vulnerability exists in the description component of the study section, where an attacker can inject JavaScript into the description field. This allows for the execution of malicious scripts when an admin views the...
CVE-2024-51379
CVE-2024-51379: Stored XSS in JATOS v3.9.3 (description component of the study section) enables an attacker to inject JavaScript that executes when an admin views the description, potentially leading to account takeover; description notes the vulnerability but does not specify a patch in the prov...
The vulnerability of the className and Description components in the CMS system’s Typesetter allows attackers to perform cross-site scripting attacks.
The vulnerability of the className and Description components in the CMS system’s Typesetter is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...