9 matches found
EUVD-2020-15947
Malware in sbrugna...
BIT-PHPLIST-2020-23194
A stored cross site scripting XSS vulnerability in the "Import Subscribers" feature in phplist 3.5.4 and below allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2020-23194
A stored cross site scripting XSS vulnerability in the "Import Subscribers" feature in phplist 3.5.4 and below allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2020-23194
A stored cross site scripting XSS vulnerability in the "Import Subscribers" feature in phplist 3.5.4 and below allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload...
Cross site scripting
A stored cross site scripting XSS vulnerability in the "Import Subscribers" feature in phplist 3.5.4 and below allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2020-23194
CVE-2020-23194 is a stored XSS vulnerability in the phplist "Import Subscribers" feature, affecting phplist 3.5.4 and earlier. The root cause is an injectable payload that allows an authenticated attacker to execute arbitrary web scripts or HTML. The per-document details indicate exploitation via...
CVE-2020-23194
A stored cross site scripting XSS vulnerability in the "Import Subscribers" feature in phplist 3.5.4 and below allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload...
PT-2021-10855 · Phplist · Phplist
Name of the Vulnerable Software and Affected Versions: phplist versions 3.5.4 and below Description: A stored cross site scripting XSS issue exists in the "Import Subscribers" feature, allowing authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload. Recommendations...
PhpList 跨站脚本漏洞
phpList is an open source newsletter and email marketing software from phpList UK. A stored cross-site scripting vulnerability exists in the "Import Subscribers" feature in phplist 3.5.4 and earlier versions, which can be exploited to execute arbitrary web script or HTML...