CVE-2024-39173

calculator-boilerplate v1.0 was discovered to contain a remote code execution RCE vulnerability via the eval function at /routes/calculator.js. This vulnerability allows attackers to execute arbitrary code via a crafted payload injected into the input field...

Netdisco 跨站脚本漏洞

Netdisco is a web-based network management tool. A security vulnerability exists in versions prior to Netdisco v2.063000, which stems from a cross-site scripting attack XSS vulnerability in the component /Web/TypeAhead.pm in Netdisco. An attacker could use this vulnerability to attack a user's...