Lucene search
K

6 matches found

Veracode
Veracode
added 2025/01/09 4:31 a.m.8 views

Reflected Cross-Site Scripting (Reflected XSS)

tltneon/lgsl is vulnerable to Reflected Cross-Site Scripting Reflected XSS. The vulnerability is due to improper sanitization of the Referer HTTP header, allowing an attacker to inject arbitrary JavaScript code into the application's HTML response...

5.3CVSS6.2AI score0.00599EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2024/12/30 5:15 p.m.28 views

CVE-2024-56517

LGSL Live Game Server List provides online status lists for online video games. Versions up to and including 6.2.1 contain a reflected cross-site scripting vulnerability in the Referer HTTP header. The vulnerability allows attackers to inject arbitrary JavaScript code, which is reflected in the...

5.3CVSS0.00599EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/30 4:36 p.m.8 views

CVE-2024-56517 LGSL has a reflected XSS at /lgsl_files/lgsl_list.php

LGSL Live Game Server List provides online status lists for online video games. Versions up to and including 6.2.1 contain a reflected cross-site scripting vulnerability in the Referer HTTP header. The vulnerability allows attackers to inject arbitrary JavaScript code, which is reflected in the...

5.3CVSS6AI score0.00599EPSS
Exploits0References3
NVD
NVD
added 2024/12/26 10:15 p.m.10 views

CVE-2024-56361

LGSL Live Game Server List provides online status for games. Before 7.0.0, a stored cross-site scripting XSS vulnerability was identified in lgsl. The function lgslquery40 in lgslprotocol.php has implemented an HTTP crawler. This function makes a request to the registered game server, and upon...

5.3CVSS0.00435EPSS
Exploits0References2
OSV
OSV
added 2024/12/26 9:59 p.m.7 views

CVE-2024-56361 Stored Cross-Site Scripting (XSS) in lgsl v7.0

LGSL Live Game Server List provides online status for games. Before 7.0.0, a stored cross-site scripting XSS vulnerability was identified in lgsl. The function lgslquery40 in lgslprotocol.php has implemented an HTTP crawler. This function makes a request to the registered game server, and upon...

5.3CVSS5.3AI score0.00435EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/12/26 9:59 p.m.18 views

CVE-2024-56361 Stored Cross-Site Scripting (XSS) in lgsl v7.0

LGSL Live Game Server List provides online status for games. Before 7.0.0, a stored cross-site scripting XSS vulnerability was identified in lgsl. The function lgslquery40 in lgslprotocol.php has implemented an HTTP crawler. This function makes a request to the registered game server, and upon...

5.3CVSS0.00435EPSS
Exploits0References2
Rows per page
Query Builder