4 matches found
EUVD-2022-33028
Malicious code in bioql PyPI...
Cross site scripting
XSS in edit page of Hoosk 1.8.0 allows attacker to execute javascript code in user browser via edit page with XSS payload bypass filter some special chars...
CVE-2021-43478
A vulnerability exists in Hoosk 1.8.0 in /install/index.php, due to a failure to check if config.php already exists in the root directory, which could let a malicious user reinstall the website...
CVE-2021-43478
CVE-2021-43478 affects Hoosk 1.8.0, with impact arising from /install/index.php failing to check whether config.php already exists in the root directory. This could allow a malicious actor to trigger a reinstall of the site, per multiple connected records describing the same issue. The provided d...