24 matches found
PT-2023-14951 · Unknown · Online Student Enrollment System
Name of the Vulnerable Software and Affected Versions: Online Student Enrollment System version 1.0 Description: A cross-site scripting XSS issue in the /admin/register.php component allows attackers to execute arbitrary web scripts via a crafted payload injected into the name parameter...
PT-2020-16888 · Icewarp · Icewarp
Name of the Vulnerable Software and Affected Versions: IceWarp version 11.4.5.0 Description: The issue allows for a Cross-Site Scripting XSS attack via the language parameter. This can potentially lead to malicious script execution on the client-side. The estimated number of affected devices and...
PT-2019-9622 · Gnuboard · Gnuboard5
Name of the Vulnerable Software and Affected Versions: GNUBOARD5 version 5.3.1.9 Description: The issue allows remote attackers to inject arbitrary web script or HTML via the bo mobile content tail parameter, also referred to as the "mobile board tail contents" parameter, in the adm/board form...
PT-2007-1655 · Allmylinks · Allmylinks
Name of the Vulnerable Software and Affected Versions: AllMyLinks versions 0.5.0 and earlier Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the AML opensite parameter in the index.php file. This enables attackers to potentially gain control over the syst...