PT-2026-36032

A security vulnerability has been detected in 1024-lab smart-admin up to 3.30.0. This affects an unknown function of the file /smart-admin-api/druid/index.html of the component Demo Site. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has bee...

CVE-2026-30661

CVE-2026-30661 affects iCMS v8.0.0 in the User Management component (index.html). The vulnerability is a Cross-Site Scripting (XSS) flaw that allows an attacker to inject arbitrary web script or HTML via the regip or loginip parameters. The provided documents do not specify exploit details, affec...

CVE-2025-66963

An issue in Hitron HI3120 v.7.2.4.5.2b1 allows a local attacker to obtain sensitive information via the Logout option in the index.html...

PT-2025-51241

An issue in Hitron HI3120 v.7.2.4.5.2b1 allows a local attacker to obtain sensitive information via the Logout option in the index.html...

EUVD-2000-0352

Malware in sbrugna...

EUVD-2018-20901

Malware in sbrugna...

EUVD-2018-11567

Malware in sbrugna...

EUVD-2010-3276

Malware in sbrugna...

EUVD-1999-0554

Malware in sbrugna...

EUVD-2019-5482

Malware in sbrugna...

EUVD-2024-49104

Malicious code in bioql PyPI...

EUVD-2021-31633

Malicious code in bioql PyPI...

EUVD-2025-1563

Malicious code in bioql PyPI...

EUVD-2025-5544

Malicious code in bioql PyPI...

CVE-2024-29193

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to DOM-based cross-site scripting. The index page index.html shows the available streams by fetching the API in the client side. Then, it uses Object.entries to iterate over the result whose first item name gets...

CVE-2019-14240

WCMS v0.3.2 has a CSRF vulnerability, with resultant directory traversal, to modify index.html via the /wex/html.php?finish=../index.html URI...

CVE-1999-0569

A URL for a WWW directory allows auto-indexing, which provides a list of all files in that directory if it does not contain an index.html file...

CVE-2025-5010 moonlightL hexo-boot Blog Backend index.html cross site scripting

A vulnerability classified as problematic has been found in moonlightL hexo-boot 4.3.0. This affects an unknown part of the file /admin/home/index.html of the component Blog Backend. The manipulation of the argument Description leads to cross site scripting. It is possible to initiate the attack...

Exploit for Code Injection in Foxcms

Description Published: 2025-03-27 Updated: 2025-03-27 An...

CVE-2025-3531 YouDianCMS index.html cross site scripting

A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. This affects an unknown part of the file /App/Tpl/Admin/Default/Log/index.html. The manipulation of the argument UserName/LogType leads to cross site scripting. It is possible to initiate the attack remotely. The explo...