Django: Deserialization of potentially malicious data to RCE

Hello, Django Team! It's my first time working with you, hope it will be great! Note: I have not seen this issue neither in known vulnerabilities nor in documentation, so here I am. Summary Several type of caches in https://github.com/django/django/tree/main/django/core/cache/backends use python...

Security Evaluation Of NanoCMS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Security Evaluation of NanoCMS April 14, 2009 Version tested: 0.4final by Justin C. Klein Keane The text of this report is also available at http://www.madirish.net/vulnerabilities/nanocms NanoCMS http://nanocms.in is a PHP based Content Management...

CVE-2003-1546

Cross-site scripting XSS vulnerability in gbook.php in Filebased guestbook 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the comment section...

CVE-2003-1546

CVE-2003-1546 documents a Cross-site scripting (XSS) vulnerability in gbook.php of the Filebased guestbook 1.1.3. The flaw lets remote attackers inject arbitrary web script or HTML through the guestbook comment section. The connected sources reiterate the same description and do not provide addit...

CVE-2003-1546

Cross-site scripting XSS vulnerability in gbook.php in Filebased guestbook 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the comment section...