12 matches found
EUVD-2004-1444
Malware in sbrugna...
CVE-2021-25978
Apostrophe CMS versions between 2.63.0 to 3.3.1 are vulnerable to Stored XSS where an editor uploads an SVG file that contains malicious JavaScript onto the Images module, which triggers XSS once viewed...
PHPCMS SQL Injection Vulnerability (CNVD-2022-43217)
PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules for news, images, downloads, information, products, etc. A security vulnerability exists in PHPCMS v1.0, which stems from the category parameter in categorymenu.php. No detailed vulnerabilit...
Cross-site Scripting in apostrophe
Apostrophe CMS versions between 2.63.0 to 3.3.1 are vulnerable to Stored XSS where an editor uploads an SVG file that contains malicious JavaScript onto the Images module, which triggers XSS once viewed...
GHSA-4R9C-JGHC-CX5M Cross-site Scripting in apostrophe
Apostrophe CMS versions between 2.63.0 to 3.3.1 are vulnerable to Stored XSS where an editor uploads an SVG file that contains malicious JavaScript onto the Images module, which triggers XSS once viewed...
Apostrophe CMS Cross-Site Scripting Vulnerability
Apostrophe CMS is a fully functional open source CMS built using Node.js, designed to enhance organization by combining contextual editing and headless architecture in a full-stack JS environment.Apostrophe CMS = cross-site scripting vulnerability, which originates in Apostrophe CMS versions...
CVE-2021-25978
Apostrophe CMS versions between 2.63.0 to 3.3.1 are vulnerable to Stored XSS where an editor uploads an SVG file that contains malicious JavaScript onto the Images module, which triggers XSS once viewed...
CVE-2021-25978 Apostrophe - XSS
Apostrophe CMS versions between 2.63.0 to 3.3.1 are vulnerable to Stored XSS where an editor uploads an SVG file that contains malicious JavaScript onto the Images module, which triggers XSS once viewed...
Apostrophe 跨站脚本漏洞
Apostrophe CMS is a fully functional open source CMS built using Node.js, designed to enhance organization by combining contextual editing and headless architecture in a full-stack JS environment.Apostrophe CMS = cross-site scripting vulnerability, which originates in Apostrophe CMS versions...
CVE-2005-4677
SQL injection vulnerability in additionalimages.php aka the Additional Images module before 1.14 in osCommerce allows remote attackers to execute arbitrary SQL commands via the productsid parameter to productinfo.php...
CVE-2004-1448
CVE-2004-1448 affects Jetbox One 2.0.8 (and possibly other versions). The issue is an unrestricted remote file upload in the IMAGES module that allows users with Author privileges to upload PHP files, leading to arbitrary code execution on the server. The public records describe the vulnerability...
CVE-2004-1448
Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to upload PHP files and execute arbitrary code...