Lucene search
K

4 matches found

Veracode
Veracode
added 2022/11/08 4:21 a.m.18 views

HTML Injection

froxlor is vulnerable to HTML Injection. The vulnerability exists due to index.php which allows an attacker to inject and execute malicious HTML content into the login webpage...

6.1CVSS6.3AI score0.01265EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2022/04/14 9:5 a.m.15 views

Cross-site Scripting (XSS)

froxlor/froxlor is vulnerable to cross-site scripting. The vulnerability exists due to a lack of sanitization of input via the customermail GET parameter allowing an attacker to input HTML tags which will be reflected in the login webpage...

6.1CVSS1.3AI score0.01409EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2021/12/08 1:16 p.m.9 views

CVE-2021-43063

A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP GET requests to the login webpage...

6.1CVSS7.5AI score0.00885EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/12/15 12:0 a.m.4 views

PT-2020-6157 · Phpjabbers · Phpjabbers Appointment Scheduler

Name of the Vulnerable Software and Affected Versions: PHPJabbers Appointment Scheduler version 2.3 Description: The issue is related to cross-site scripting XSS vulnerabilities in the admin login webpage of the PHPJabbers Appointment Scheduler. These vulnerabilities allow remote attackers to...

6.4CVSS6.2AI score0.02678EPSS
Exploits4References8
Rows per page
Query Builder