10 matches found
EUVD-2018-0084
Malware in sbrugna...
Cross-site Scripting (XSS)
knowledge-repo is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper user input validation in the post comments functionality. This allows an attacker to inject arbitrary web scripts or HTML content into the application, potentially leading to cross-site scripting XSS...
Airbnb Knowledge Repo XSS In Comments
Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo prior to 0.9.0 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...
GHSA-XMW7-848P-P95W Airbnb Knowledge Repo XSS In Comments
Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo prior to 0.9.0 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...
Airbnb Knowledge Repo Cross-Site Scripting Vulnerability
Airbnb Knowledge Repo is a suite of knowledge sharing platforms. The platform supports features such as data storage and utility management. A cross-site scripting vulnerability exists in Airbnb Knowledge Repo version 0.7.4. A remote attacker can exploit this vulnerability to inject arbitrary web...
PYSEC-2018-116
Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...
Cross site scripting
Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...
CVE-2018-12104
Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...
PYSEC-2018-116
Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...
CVE-2018-12104
Airbnb Knowledge Repo 0.7.4 is reported vulnerable to Cross-site Scripting (XSS) via the post comments functionality (post/posts/new_report.kp). The root cause is improper input validation in the comments feature, as cited by Veracode (improper user input validation) and OSV entries noting the is...