16 matches found
CVE-2022-31300
A cross-site scripting vulnerability in the DM Section component of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request...
EUVD-2022-52856
Malicious code in bioql PyPI...
EUVD-2022-52853
Malicious code in bioql PyPI...
CVE-2022-31299
Haraj v3.7 was discovered to contain a reflected cross-site scripting XSS vulnerability in the User Upgrade Form...
Cross site scripting
Haraj v3.7 was discovered to contain a reflected cross-site scripting XSS vulnerability in the User Upgrade Form...
CVE-2022-31299
Haraj v3.7 was discovered to contain a reflected cross-site scripting XSS vulnerability in the User Upgrade Form...
CVE-2022-31301
Haraj v3.7 was discovered to contain a stored cross-site scripting XSS vulnerability in the Post Ads component...
CVE-2022-31298
A cross-site scripting vulnerability in the ads comment section of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request...
Cross site scripting
A cross-site scripting vulnerability in the ads comment section of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request...
CVE-2022-31301
Haraj v3.7 was discovered to contain a stored cross-site scripting XSS vulnerability in the Post Ads component...
CVE-2022-31298
A cross-site scripting vulnerability in the ads comment section of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request...
CVE-2022-31298
Haraj v3.7 contains a cross-site scripting (XSS) vulnerability in the ads comments section that allows execution of arbitrary web scripts or HTML via a crafted POST request. The CVE description is corroborated by multiple sources across CVE records (NVD, CNVD, Red Hat, etc.), all referencing the ...
CVE-2022-31300
A cross-site scripting vulnerability in the DM Section component of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request...
Cross site scripting
A cross-site scripting vulnerability in the DM Section component of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request...
CVE-2022-31300
Haraj v3.7 has a cross-site scripting vulnerability in the DM Section component, enabling arbitrary scripts via a crafted POST request. The issue stems from insufficient data validation/filtering and output encoding in DM components, allowing attackers to inject and execute scripts (reported as a...
CVE-2022-31300
A cross-site scripting vulnerability in the DM Section component of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request...