12 matches found
CVE-2026-7345
Insufficient validation of untrusted input in Feedback in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
EUVD-2020-10209
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2024-43438
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned b...
CVE-2020-18282
Cross-site scripting XSS vulnerability in NoneCms 1.3.0 allows remote attackers to inject arbitrary web script or HTML via feedback feature...
CVE-2020-18282
Cross-site scripting XSS vulnerability in NoneCms 1.3.0 allows remote attackers to inject arbitrary web script or HTML via feedback feature...
CVE-2020-18282
Cross-site scripting XSS vulnerability in NoneCms 1.3.0 allows remote attackers to inject arbitrary web script or HTML via feedback feature...
Cross site scripting
Cross-site scripting XSS vulnerability in NoneCms 1.3.0 allows remote attackers to inject arbitrary web script or HTML via feedback feature...
CVE-2020-18282
CVE-2020-18282 affects NoneCms 1.3.0 with a cross-site scripting (XSS) vulnerability exploitable via the feedback feature. The root cause and specifics are not fully detailed in the provided documents; CVSSv3.1 base score is 6.1 (MEDIUM), with network attack vector, low attack complexity, no priv...
CVE-2020-18282
Cross-site scripting XSS vulnerability in NoneCms 1.3.0 allows remote attackers to inject arbitrary web script or HTML via feedback feature...
Jfinal CMS跨站脚本漏洞
Jfinal CMS is a powerful information consulting website developed in java, using the simple and powerful JFinal as a web framework, template engine with beetl, database with mysql, front-end bootstrap framework. jfinal CMS version 5.1.0 has a cross-site scripting vulnerability, the vulnerability...
Stored Cross-Site Scripting Vulnerability in Opposite App
Opposite App is is an entertaining dating app with a dating theme. Opposite App has a stored cross-site scripting vulnerability, the vulnerability arises because the feedback function module fails to effectively filter the data submitted by the user, an attacker can use the vulnerability to impla...
GeoAuctions 1.0.6 Enterprise index.php d Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/19093/info GeodesicSolutions products are prone to multiple SQL-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in an SQL query. A successful attack could...