EUVD-2018-17031

Malware in sbrugna...

CVE-2025-59758 Multiple vulnerabilities in AndSoft's e-TMS

Cross-site scripting XSS vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and...

PT-2023-12240 · Koel · Koel

Name of the Vulnerable Software and Affected Versions: Koel versions 5.1.4 and earlier Description: An issue in Koel allows remote attackers to gain access to sensitive information via the login form parameters. Recommendations: For versions 5.1.4 and earlier, at the moment, there is no informati...

MGASA-2017-0429 Updated mediawiki packages fix security vulnerabilities

XSS when $wgShowExceptionDetails = false and browser sends non-standard url escaping CVE-2017-8808. Reflected File Download from api.php CVE-2017-8809. On private wikis, login form shouldn't distinguish between login failure due to bad username and bad password CVE-2017-8810. It's possible to...