EUVD-2023-42645

Malicious code in bioql PyPI...

CVE-2023-38878

A reflected cross-site scripting XSS vulnerability in DevCode OpenSTAManager versions 2.4.24 to 2.4.47 may allow a remote attacker to execute arbitrary JavaScript in the web browser of a victim by injecting a malicious payload into the 'error' and 'errordescription' parameters of 'oauth2.php'...

Cross site scripting

A reflected cross-site scripting XSS vulnerability in DevCode OpenSTAManager versions 2.4.24 to 2.4.47 may allow a remote attacker to execute arbitrary JavaScript in the web browser of a victim by injecting a malicious payload into the 'error' and 'errordescription' parameters of 'oauth2.php'...

CVE-2023-38878

DevCode OpenSTAManager is affected by a reflected XSS in versions 2.4.24–2.4.47. The vulnerability arises from injecting malicious payloads into the error and error_description parameters of oauth2.php, allowing a remote attacker to execute JavaScript in a victim’s browser. Public documents do no...

CVE-2023-38878

A reflected cross-site scripting XSS vulnerability in DevCode OpenSTAManager versions 2.4.24 to 2.4.47 may allow a remote attacker to execute arbitrary JavaScript in the web browser of a victim by injecting a malicious payload into the 'error' and 'errordescription' parameters of 'oauth2.php'...

Cross-site Scripting (XSS) - Stored in devcode-it/openstamanager

✍️ Description Stored xss through file upload via anagrafiche 🕵️‍♂️ Proof of Concept Go to an existing Anagrafiche or create a new one. Upload a .svg file with the following content: javascript alertdocument.cookie; give a name you want ending with .svg store-xss.svg for example. when you click on...

Rosoft Media Player <= 4.1.7 .M3U Stack Overflow Exploit

No description provided by source. / rosoft-player-expl.c: 2007-12-18: Copyright c 2007 devcode ^^ D E V C O D E ^^ Rosoft Media Player = 4.1.7 .M3U Stack Overflow 0-DAY Description: A stack overflow occurs when parsing an .m3u file...

Rosoft Media Player 4.1.7 - '.m3u' Local Stack Overflow

/ rosoft-player-expl.c: 2007-12-18: Copyright c 2007 devcode ^^ D E V C O D E ^^ Rosoft Media Player include / Invalid chars: 0x1A 0xA 0xD 0x00 win32bind - EXITFUNC=thread LPORT=4444 Size=344 Encoder=PexFnstenvSub http://metasploit.com / unsigned char uszShellcode =...

Microsoft Windows - DNS DnssrvQuery Remote Stack Overflow

/ Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows DNS DnssrvQuery Stack Overflow CVE-2007-1748 Description: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary erro...

Microsoft Windows - Animated Cursor '.ani' Local Overflow (Hardware DEP)

/ version 0.5 Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows .ANI LoadAniIcon Stack Overflow For Hardware DEP XP SP2 CVE-2007-1765 Description: A vulnerability has been identified in Microsoft Windows, which could be exploited by remote attackers to take complete control of an affected...