7 matches found
EUVD-2022-5540
Malicious code in bioql PyPI...
Cross-Site Scripting (XSS)
inter-mediator/fmdataapi is vulnerable to Cross-Site Scripting XSS. The vulnerability exists in FMDataAPISample.php due to improper input validations which allows an attacker to inject and execute arbitrary JavaScript...
GHSA-W969-PQ6X-267J INTER-Mediator Cross-Site Scripting (XSS)
Multiple Cross-Site Scripting XSS issues were discovered in INTER-Mediator 5.5. The vulnerabilities exist due to insufficient filtration of user-supplied data c and cred passed to the "INTER-Mediator-master/AuthSupport/PasswordReset/resetpassword.php" URL. An attacker could execute arbitrary HTML...
Cross site scripting
Multiple Cross-Site Scripting XSS issues were discovered in INTER-Mediator 5.5. The vulnerabilities exist due to insufficient filtration of user-supplied data c and cred passed to the "INTER-Mediator-master/AuthSupport/PasswordReset/resetpassword.php" URL. An attacker could execute arbitrary HTML...
CVE-2017-6484
Multiple Cross-Site Scripting XSS issues were discovered in INTER-Mediator 5.5. The vulnerabilities exist due to insufficient filtration of user-supplied data c and cred passed to the "INTER-Mediator-master/AuthSupport/PasswordReset/resetpassword.php" URL. An attacker could execute arbitrary HTML...
CVE-2017-6484
Multiple Cross-Site Scripting XSS issues were discovered in INTER-Mediator 5.5. The vulnerabilities exist due to insufficient filtration of user-supplied data c and cred passed to the "INTER-Mediator-master/AuthSupport/PasswordReset/resetpassword.php" URL. An attacker could execute arbitrary HTML...
CVE-2017-6484
The CVE-2017-6484 entry concerns INTER-Mediator 5.5 with multiple XSS issues. Affected component is the PasswordReset flow in INTER-Mediator-master/Auth_Support/PasswordReset/resetpassword.php, where insufficient filtration of user-supplied data (c and cred) allows injection of HTML/script in the...