CVE-2018-10097

XSS exists in Domain Trader 2.5.3 via the recoverlogin.php emailaddress parameter...

CVE-2023-5612 Missing Authorization in GitLab

An issue has been discovered in GitLab affecting all versions before 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. It was possible to read the user email address via tags feed although the visibility in the user profile has been disabled...

CVE-2019-17176

Genesys PureEngage Digital eServices 8.1.x allows XSS via HtmlChatPanel.jsp or HtmlChatFrameSet.jsp ActionColor, ClientNickNameColor, Email, email, or emailaddress parameter...

CVE-2018-10097

XSS exists in Domain Trader 2.5.3 via the recoverlogin.php emailaddress parameter...

CVE-2018-10097

CVE-2018-10097 describes a cross-site scripting vulnerability in Domain Trader version 2.5.3, exploitable via the recoverlogin.php email_address parameter. The issue is a client-side/script injection flaw in that input parameter, enabling arbitrary script/HTML to be injected when processed by the...

CentOS Web Panel 0.9.8.12 - Multiple Vulnerabilities

Document Title: =============== CentOS Web Panel v0.9.8.12 - Multiple Persistent Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1836 Release Date: ============= 2018-01-19 Vulnerability Laboratory ID VL-ID:...

CentOS Web Panel 0.9.8.12 - Multiple Vulnerabilities

CentOS Web Panel 0.9.8.12 - Multiple Vulnerabilities Document Title: =============== CentOS Web Panel v0.9.8.12 - Multiple Persistent Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1836 Release Date: ============= 2018-01-19...