Parallels H-Sphere 3.6.1713 - Cross-Site Scripting

Parallels H-Sphere 3.6.1713 contains a cross-site scripting vulnerability via the indexen.php 'from' parameter. id: CVE-2022-30777 info: name: Parallels H-Sphere 3.6.1713 - Cross-Site Scripting author: 3th1cyuk1 severity: medium description: | Parallels H-Sphere 3.6.1713 contains a cross-site...

EUVD-2022-52601

Malicious code in bioql PyPI...

CVE-2022-30777

Parallels H-Sphere 3.6.1713 allows XSS via the indexen.php from parameter...

Parallels H-Sphere Cross-Site Scripting Vulnerability

Parallels H-Sphere is a web-hosting automation control panel from Parallels, Inc. It is used for shared web hosting services. Parallels H-Sphere version 3.6.2 contains a cross-site scripting vulnerability that can be exploited by attackers to perform XSS via indexen.php in the parameters...

CVE-2022-30777

Parallels H-Sphere 3.6.1713 allows XSS via the indexen.php from parameter...

Design/Logic Flaw

Parallels H-Sphere 3.6.1713 allows XSS via the indexen.php from parameter...

CVE-2022-30777

The CVE-2022-30777 issue affects Parallels H-Sphere 3.6.1713, where a Cross-Site Scripting (XSS) flaw exists in the index_en.php via the 'from' parameter. Exploitation could allow arbitrary script execution in the victim’s browser, potentially leading to session hijacking, defacement, or theft of...

CVE-2022-30777

Parallels H-Sphere 3.6.1713 allows XSS via the indexen.php from parameter...