4 matches found
HTML Injection
froxlor is vulnerable to HTML Injection. The vulnerability exists due to index.php which allows an attacker to inject and execute malicious HTML content into the login webpage...
Cross-site Scripting (XSS)
froxlor/froxlor is vulnerable to cross-site scripting. The vulnerability exists due to a lack of sanitization of input via the customermail GET parameter allowing an attacker to input HTML tags which will be reflected in the login webpage...
CVE-2021-43063
A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP GET requests to the login webpage...
PT-2020-6157 · Phpjabbers · Phpjabbers Appointment Scheduler
Name of the Vulnerable Software and Affected Versions: PHPJabbers Appointment Scheduler version 2.3 Description: The issue is related to cross-site scripting XSS vulnerabilities in the admin login webpage of the PHPJabbers Appointment Scheduler. These vulnerabilities allow remote attackers to...