25 matches found
CVE-2020-19511
Cross Site Scriptiong vulnerability in Typesetter 5.1 via the !1 className and !2 Description fields in index.php/Admin/Classes,...
Web-School ERP 跨站脚本漏洞
Web-School ERP is a school management software for schools and educational organizations. A stored cross-site scripting vulnerability exists in the Activity Name and Description fields in Web-School ERP version 5.0. An attacker can exploit the vulnerability to inject and execute JavaScript code...
PT-2020-16929
Name of the Vulnerable Software and Affected Versions SourceCodester Gym Management System version 1.0 Description A stored Cross-site scripting XSS issue allows users to inject and store arbitrary JavaScript code in "index.php?page=packages" via vulnerable fields Package Name and Description...
Zyxel NAS 326 Cross-Site Scripting Vulnerability
The Zyxel NAS 326 is a two-drive personal cloud storage device from Zyxel. A cross-site scripting vulnerability exists in Zyxel NAS 326 version 5.21 and earlier. A remote authenticated attacker can exploit this vulnerability to inject arbitrary JavaScript or HTML via the user, group, and file sha...
WAGO 750-881 Ethernet Controller Device Cross-Site Scripting Vulnerability
The WAGO 750-881 Ethernet Controller devices is an Ethernet controller device from WAGO Germany. A cross-site scripting vulnerability exists in the SNMP configuration of the webserv/cplcfg/snmp.ssi file in the WAGO 750-881 Ethernet Controller device version 01.09.1813 and earlier, which can be...