16 matches found
SPIP tickets 安全漏洞
SPIP tickets are an extension plugin provided by the SPIP company. Versions of SPIP tickets prior to 4.3.3 contained a security vulnerability. This vulnerability stemmed from the forum preview processing, which added untrusted request parameters to HTML, potentially allowing remote code execution...
CVE-2019-25367
ArangoDB Community Edition 3.4.2-1 contains multiple cross-site scripting vulnerabilities in the Aardvark web admin interface (index.html). The issues allow injection of scripts via parameters in /_db/_system/_admin/aardvark/index.html, enabling JavaScript execution in authenticated users’ browse...
EUVD-2006-1843
Malware in sbrugna...
EUVD-2009-2872
Malware in sbrugna...
EUVD-2010-4376
Malware in sbrugna...
EUVD-2021-0623
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-9188
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerabilities in Moodle CMS on or before 3.1.2 allow remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-24136 Testimonials Widget < 4.0.0 - Multiple Authenticated Stored XSS
Unvalidated input and lack of output encoding in the Testimonials Widget WordPress plugin, versions before 4.0.0, lead to multiple Cross-Site Scripting vulnerabilities, allowing remote attackers to inject arbitrary JavaScript code or HTML via the below parameters: - Author - Job Title - Location ...
CVE-2021-28088
Cross-site scripting XSS in modules/content/admin/content.php in ImpressCMS profile 1.4.2 allows remote attackers to inject arbitrary web script or HTML parameters through the "Display Name" field...
Umbraco CMS SeoChecker Plugin 1.9.2 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Author Information Author : Ahmed Elhady Mohamed twitter : @AhmedELhady Software Information Affected Software : SeoChecker Umbraco CMS Plug-in Version: version 1.9.2 Software website : https://soetemansoftware.nl/seo-checker Description...
Umbraco CMS SeoChecker Plugin 1.9.2 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Author Information Author : Ahmed Elhady Mohamed twitter : @AhmedELhady Date : 01/07/2018 Software Information Affected Software : SeoChecker Umbraco CMS Plug-in Version: version 1.9.2 Software website : https://soetemansoftware.nl/seo-checker...
CVE-2010-3659
Multiple cross-site scripting XSS vulnerabilities in TYPO3 CMS 4.1.x before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4, and 4.4.x before 4.4.1 allow remote authenticated backend users to inject arbitrary web script or HTML via unspecified parameters to the extension manager, or unspecified...
CVE-2015-7391
Multiple cross-site scripting XSS vulnerabilities in TestLink before 1.9.14 allow remote attackers to inject arbitrary web script or HTML via the 1 selectedenddate or 2 selectedstartdate parameter to lib/results/tcCreatedPerUserOnTestProject.php; the 3 containerType parameter to...
CVE-2014-3943
Multiple cross-site scripting XSS vulnerabilities in unspecified backend components in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allow remote authenticated editors to inject arbitrary web script or HTML via unknown parameters...
CVE-2004-2491
CVE-2004-2491 describes a race condition in Opera 7.53 Build 3850 that causes the address bar to be filled before the page is loaded, enabling remote attackers to spoof the URL via window.open and location.replace and potentially facilitate phishing. Affected product: Opera Web Browser 7.53 Build...
CVE-2004-2491
A race condition in Opera web browser 7.53 Build 3850 causes Opera to fill in the address bar before the page has been loaded, which allows remote attackers to spoof the URL in the address bar via the window.open and location.replace HTML parameters, which facilitates phishing attacks...