7 matches found
CVE-2024-9440 Slim Select 2.0 createOption "text" XSS
Slim Select 2.0 versions through 2.9.0 are affected by a potential cross-site scripting vulnerability. In select.ts:createOption, the text variable from the user-provided Options object is assigned to an innerHTML without sanitation. Software that depends on this library to dynamically generate...
CVE-2024-9440 Slim Select 2.0 createOption "text" XSS
Slim Select 2.0 versions through 2.9.0 are affected by a potential cross-site scripting vulnerability. In select.ts:createOption, the text variable from the user-provided Options object is assigned to an innerHTML without sanitation. Software that depends on this library to dynamically generate...
Slim Select 安全漏洞
Slim Select is an advanced select dropdown menu by Brian Voelker Personal Developer. A security vulnerability exists in Slim Select versions 2.0 through 2.9.0, which stems from a dynamically generated list that is not cleaned of user-supplied input, and is susceptible to a cross-site scripting...
Palo Alto Networks 7.1.x < 7.1.22 / 8.0.x < 8.0.15 / 8.1.x < 8.1.6 Cross-Site Scripting Vulnerability (PAN-SA-2019-0001)
The version of Palo Alto Networks PAN-OS running on the remote host is 7.1.x prior to 7.1.22 or 8.0.x prior to 8.0.15 or 8.1.x prior to 8.1.6. It is, therefore, affected by a cross-site scripting XSS vulnerability that exists in the PAN-OS external dynamic lists due to improper validation of...
CVE-2019-1565
The PAN-OS external dynamics lists in PAN-OS 7.1.21 and earlier, PAN-OS 8.0.14 and earlier, and PAN-OS 8.1.5 and earlier, may allow an attacker that is authenticated in Next Generation Firewall with write privileges to External Dynamic List configuration to inject arbitrary JavaScript or HTML...
Cross-Site Scripting (XSS) in PAN-OS External Dynamic Lists
A Cross-Site Scripting XSS vulnerability exists in the PAN-OS External Dynamic Lists. Ref. PAN-106776; CVE-2019-1565 Successful exploitation of this issue may allow an attacker that is authenticated in Next Generation Firewall with write privileges to External Dynamic List configuration to inject...
Cross-Site Scripting (XSS) in PAN-OS External Dynamic Lists
A Cross-Site Scripting XSS vulnerability exists in the PAN-OS External Dynamic Lists. Ref. PAN-106776; CVE-2019-1565 Successful exploitation of this issue may allow an attacker that is authenticated in Next Generation Firewall with write privileges to External Dynamic List configuration to inject...