8 matches found
EUVD-2024-29333
Malicious code in bioql PyPI...
EUVD-2024-29332
Malicious code in bioql PyPI...
Cross-Site Scripting
Cacti is vulnerable to Cross-site scripting. The vulnerability is due to insufficient data validation in the formsave function in dataqueries.php, which is used to concatenate the HTML statement in the growrightpanetree function from html.php...
CVE-2024-31444 Cacti XSS vulnerability in lib/html.php by reading dirty data stored in database
Cacti provides an operational monitoring and fault management framework. Prior to version 1.2.27, some of the data stored in automationtreerulesformsave function in automationtreerules.php is not thoroughly checked and is used to concatenate the HTML statement in formconfirm function from...
CVE-2024-31443
Cacti provides an operational monitoring and fault management framework. Prior to 1.2.27, some of the data stored in formsave function in dataqueries.php is not thoroughly checked and is used to concatenate the HTML statement in growrightpanetree function from lib/html.php , finally resulting in...
CVE-2020-28119
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...
Cross site scripting
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...
CVE-2020-28119
Cross site scripting vulnerability in 53KF 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window...