2 matches found
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS through the idformulaire parameter. An attacker can manipulate the web content viewed by other users by injecting malicious scripts into the URL. That can allow stealing cookies from an authenticated user by...
YesWiki 跨站脚本漏洞
YesWiki is a wiki system written in PHP by the French organization YesWiki. It is used to create and manage websites in a collaborative manner. A cross-site scripting vulnerability exists in YesWiki versions prior to 4.5.4, which stems from a cross-site scripting attack on the /?BazaR endpoint an...