EUVD-2017-2613

Malware in sbrugna...

EUVD-2017-15931

Malware in sbrugna...

CVE-2017-10975

Cross-site scripting XSS vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification and in the myfiles component, if the attacker can convince the victim to proceed with an upload despit...

CVE-2022-24837

HedgeDoc is an open-source, web-based, self-hosted, collaborative markdown editor. Images uploaded with HedgeDoc version 1.9.1 and later have an enumerable filename after the upload, resulting in potential information leakage of uploaded documents. This is especially relevant for private notes an...

Lutim cross-site scripting vulnerability (CNVD-2017-22587)

Lutim is a set of tools for storing, viewing, downloading, and sharing images. A cross-site scripting vulnerability exists in versions of Lutim prior to 0.8. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the help of specially crafted filenames...

CVE-2017-10975

Cross-site scripting XSS vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification and in the myfiles component, if the attacker can convince the victim to proceed with an upload despit...

CVE-2017-10975

Cross-site scripting XSS vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification and in the myfiles component, if the attacker can convince the victim to proceed with an upload despit...

Cross site scripting

Cross-site scripting XSS vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification and in the myfiles component, if the attacker can convince the victim to proceed with an upload despit...

CVE-2017-10975

Lutim

CVE-2017-10975

Cross-site scripting XSS vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification and in the myfiles component, if the attacker can convince the victim to proceed with an upload despit...

Lutim Cross-Site Scripting Vulnerability

Lutim means Let's Upload That Image and can be used to store images. Lutim suffers from a cross-site scripting vulnerability due to the program failing to adequately validate user-supplied input. When an unsuspecting user browses the affected site, an attacker could exploit this vulnerability to...

Cross site scripting

Cross-site scripting XSS vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script...

CVE-2017-6877

Cross-site scripting XSS vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script...

CVE-2017-6877

Cross-site scripting XSS vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script...

CVE-2017-6877

Cross-site scripting XSS vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script...

CVE-2017-6877

CVE-2017-6877 affects the image-hosting app Lutim (versions up to 0.7.1). The vulnerability is an XSS in SVG file handling , allowing remote attackers to inject arbitrary script into a user’s browser when the affected SVG is processed/viewed. The provided documents do not specify the exact root c...