8 matches found
MAL-2025-22013 Malicious code in gsf.document-list (npm)
The package gsf.document-list was found to contain malicious code...
Malicious code in document-list-extra-questions (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 17f311a1014dd39c97963383ae0240c9ced38e74b96e8b880acd9c1bf8974c56 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
The vulnerability of the Business Process Manager system allows a perpetrator to inject arbitrary Web or HTML code.
The vulnerability of the Document List control implementation in the Business Process Manager system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary Web or HTML code using a specially crafted URL...
IBM Business Process Manager Cross-Site Scripting Vulnerability (CNVD-2016-01477)
IBM Business Process Manager BPM is a comprehensive set of business process management platform from IBM in the United States. The platform provides a range of tools related to process modeling, assembly, monitoring and deployment for business. A cross-site scripting vulnerability exists in the...
CVE-2016-0227
Cross-site scripting XSS vulnerability in the document-list control implementation in IBM Business Process Manager BPM 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.2, and 8.5.5 and 8.5.6 through 8.5.6.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
Cross site scripting
Cross-site scripting XSS vulnerability in the document-list control implementation in IBM Business Process Manager BPM 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.2, and 8.5.5 and 8.5.6 through 8.5.6.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2016-0227
Cross-site scripting XSS vulnerability in the document-list control implementation in IBM Business Process Manager BPM 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.2, and 8.5.5 and 8.5.6 through 8.5.6.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CmyDocument Content Management Application - XSS Vulnerabilities
Title: CmyDocument Content Management Application - XSS Vulnerabilities Software : CmyDocument Content Management Application Software Version : Unknownversion update : 2010-01-10 Vendor: http://cmydocument.com/ Vulnerability Published : 2011-07-11 Vulnerability Update Time : Status : Impact :...