1017 matches found
PayPal: Reflect XSS and CSP Bypass on https://www.paypal.com/businesswallet/currencyConverter/
An endpoint used for currency conversion was found to suffer from a reflected XSS vulnerability, where user input was not being properly sanitized in a parameter in the URL. This could lead to a malicious user injecting malicious JavaScript, HTML, or any other type of code that the browser may...
CVE-2020-9013
Arvato Skillpipe 3.0 allows attackers to bypass intended print restrictions by deleting from the HTML source code...
Mail.ru: [Web ICQ Client] XSS уязвимость в имени пользователя
Domain, site, application: WEB ICQ Client - https://web.icq.com/ Testing environment: Browser firefox Steps to reproduce 1. Устанавливаем имя пользователя, содержащее HTML код 2. Создаем канал/группу, в который приглашаем любого пользователя 3. Разрешаем/Запрещаем писать пользователю Actual resul...
Mail.ru: [Web ICQ Client] XSS-inj in polls
Domain, site, application: WEB ICQ Client - https://web.icq.com/ Testing environment: Browser firefox Steps to reproduce - Создаем новый опрос - Указываем в варианты ответов произвольный HTML код - Отправляем Actual results - Введенный HTML код срабатывает Демонстрация работы: █████ Impact...
Online Book Store 1.0 - Arbitrary File Upload
Exploit Title: Online Book Store 1.0 - Arbitrary File Upload Google Dork: N/A Date: 2020-01-16 Exploit Author: Or4nG.M4n aka S4udiExploit Vendor Homepage: https://projectworlds.in/free-projects/php-projects/online-book-store-project-in-php/ Software Link:...
Ultimate FAQ < 1.8.30 - Unauthenticated Reflected XSS
The HTML code generated by the FAQ shortcode does not sanitise the DisplayFAQ GET parameter, leading to an unauthenticated reflected Cross-Site Scripting issue on pages where such shortcode is used. PoC Append the following payload on a page where a FAQ is embedded: ?DisplayFAQ=...
WEMS Enterprise Manager 2.58 (email) Reflected XSS
Summary WEMS Enterprise Manager is a centralised management and monitoring system for many WEMS equipped sites. It retrieves and stores data to enable energy analysis at an enterprise wide level. It is designed to give global visibility of the key areas that affect a buildings' environmental and...
Clario: RXSS on unsubscribe feature (affiliates.kromtech.com)
Summary Reflected Cross-Site Scripting attack on affiliates.kromtech.com domain. The problem in email parameter in /unsubscribe script that takes GET parameter and pass value of this parameter directly to HTML code of the page. Step to reproduce...
Clario: RXSS on thankyou.pixels.php (yapi.mackeeper.com)
Summary Reflected Cross-Site Scripting attack on yapi.mackeeper.com domain. The problem in /billing/thankyou.pixels.php script that passes a value of vulnerable parameter directly to HTML code of the page. Step to reproduce...
Cisco Web Security Appliance Management Interface Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Web Security Appliance WSA could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface of an affected device. The vulnerability is due to insufficient validation of...
CVE-2005-2350
Cross-site scripting XSS vulnerability in websieve v0.62 allows remote attackers to inject arbitrary web script or HTML code in the web user interface...
CVE-2005-2350
CVE-2005-2350 affects websieve v0.62 and is a cross-site scripting (XSS) vulnerability in the web user interface. The root cause described in CNVD-2019-40085 notes lack of proper validation of client-side data by the web application, enabling an attacker to execute client-side code. The connected...
GHSA-X4W5-R546-X9QH Arbitrary File Read in html-pdf
All versions of html-pdf are vulnerable to Arbitrary File Read. The package fails to sanitize the HTML input, allowing attackers to exfiltrate server files by supplying malicious HTML code. XHR requests in the HTML code are executed by the server. Input with an XHR request such as...
Cross-Site Scripting (XSS)
node-red-dashboard is vulnerable to cross-site scripting XSS. The vulnerability exists as the uinotification node accepts raw HTML code by default...
V-SOL GPON/EPON OLT Platform 2.03 Cross Site Scripting
V-SOL GPON/EPON OLT Platform v2.03 Reflected XSS Vulnerability Vendor: Guangzhou V-SOLUTION Electronic Technology Co., Ltd. Product web page: https://www.vsolcn.com Affected version: V2.03.62RIPv6 V2.03.54R V2.03.52R V2.03.49 V2.03.47 V2.03.40 V2.03.26 V2.03.24 V1.8.6 V1.4 Summary: GPON is...
D-Link DSL-2875AL/DSL-2877AL Information Disclosure Vulnerability
D-Link DSL-2875AL and DSL-2877AL are prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Cross-Site Scripting
Overview Versions of cyberchef prior to 8.31.3 are vulnerable to Cross-Site Scripting. In Text Encoding Brute Force the table rows are created by concatenating the value variable unsanitized in the HTML code. If this variable is controlled by user input it allows attackers to execute arbitrary...
GHSA-JP6R-XCJJ-5H7R Cross-Site Scripting in cyberchef
Versions of cyberchef prior to 8.31.3 are vulnerable to Cross-Site Scripting. In Text Encoding Brute Force the table rows are created by concatenating the value variable unsanitized in the HTML code. If this variable is controlled by user input it allows attackers to execute arbitrary JavaScript ...
Cross-Site Scripting in cyberchef
Versions of cyberchef prior to 8.31.3 are vulnerable to Cross-Site Scripting. In Text Encoding Brute Force the table rows are created by concatenating the value variable unsanitized in the HTML code. If this variable is controlled by user input it allows attackers to execute arbitrary JavaScript ...
U.S. Dept Of Defense: Account takeover through CSRF in http://███████/██████████/default.asp
Summary: Hi team, I have found a CSRF vulnerability in http://██████/████/default.asp that leads to account takeover. Step-by-step Reproduction Instructions 1. Go to http://██████████/████████/default.asp and login 2. Copy the below HTML code 3. Submit the request and see your profile 4. Try to...