EUVD-2024-49287

Malicious code in bioql PyPI...

EUVD-2023-1865

Malicious code in bioql PyPI...

JIRA Integration 代码问题漏洞

JIRA Integration is an open source development tool from XWiki Contrib. A code issue vulnerability exists in JIRA Integration, which stems from the fact that JIRA macros can specify forged URLs, potentially leading to the disclosure of local file contents...

PT-2024-39122 · Uniong · Webitr

Name of the Vulnerable Software and Affected Versions: WebITR from Uniong affected versions not specified Description: The issue allows unauthorized remote attackers to exploit an Open Redirect vulnerability, which can be used to forge URLs. Users, believing they are accessing a trusted domain, c...

CVE-2023-35156

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page XSS. It's possible to exploit the delete template to perform a XSS, e.g. by using URL such as:...

Code injection

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page XSS. It's possible to exploit the DeleteApplication page to perform a XSS, e.g. by using URL such as:...

CVE-2023-35162 XPlatform Wiki vulnerable to cross-site scripting via xcontinue parameter in preview actions template

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page XSS. It's possible to exploit the previewactions template to perform a XSS, e.g. by using URL such as:...

Design/Logic Flaw

ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. Signed document download URLs can be forged due to a weak default URL signing key...

IBM Security Access Manager Appliance Open Redirection Vulnerability

IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from IBM, USA. The product is mainly used for access control and Web-based threat protection, providing system performance monitoring, log analysis and diagnosis. There is a security vulnerability ...

IBM Security Access Manager Open Redirect Vulnerability

IBM Security Access Manager is a product for information security management applications from IBM, USA. The product enables access management control through integrated devices for web, mobile and cloud computing. An open redirection vulnerability exists in IBM Security Access Manager. A remote...