DRUPAL-CONTRIB-2025-029

This module enables you to obfuscate email addresses, to avoid them being easily available to spammers. The module doesn't sufficiently sanitise input when ROT13 encoding is used. This vulnerability is mitigated by the fact that an attacker must have a role with the ability to enter specific HTML...

Cross-site Scripting in Backdrop CMS

A stored Cross-site scripting XSS issue in Text Editors and Formats in Backdrop CMS before 1.24.2 allows remote attackers to inject arbitrary web script or HTML via the name parameter. When a user is editing any content type e.g., page, post, or card as an admin, the stored XSS payload is execute...

[SECURITY] Fedora 36 Update: hugo-0.93.3-6.fc36

Hugo is a static HTML and CSS website generator written in Go. It is optimized for speed, easy use and configurability. Hugo takes a directory with content and templates and renders them into a full HTML website...

Elite Forum Full HTML ENject versin 1.0.0.0

c0ded: St@rExT From : Turkey exploit: titleElite Forum FULL HTML ENjocter-By St@rEXT/title style bodybackground:urlhttp://img523.imageshack.us/img523/7704/turkeyflag0xuhz9zc7uf0.jpg; color:FFFFFF; font-weight:bold; input background-color:darkred; color:FFFFFF; font-weight:bold; /style form...