624 matches found
CVE-2023-40752
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...
CVE-2023-40752
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...
CVE-2023-40752
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...
Cross site scripting
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...
CVE-2023-40767
CVE-2023-40767 affects PHPJabbers Make an Offer Widget v1.0. The issue is user enumeration during password recovery: messages differ between valid and invalid usernames, enabling brute-forcing with valid users. Base CVSS 3.1: 9.8 (Network, High impact on confidentiality, integrity, availability)....
CVE-2023-40767
User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...
PHPJabbers Make an Offer Widget 跨站脚本漏洞
Make An Offer Widget is a simple offer application. A security vulnerability exists in PHPJabbers Make an Offer Widget v1.0, which is caused by a cross-site scripting vulnerability in the "action" parameter of the index.php file...
CVE-2023-40767
User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...
Make an Offer Widget 安全漏洞
Make An Offer Widget is a simple offer application. A security vulnerability exists in PHPJabbers Make an Offer Widget version v1.0, which stems from a user enumeration vulnerability during password reset...
CVE-2023-40752
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...
CVE-2023-40752
PHPJabbers Make an Offer Widget v1.0 is affected by a Cross-Site Scripting (XSS) vulnerability in the action parameter of index.php. The issue, confirmed across multiple sources, allows unauthenticated input in the action parameter to be reflected in the page, with user interaction required. This...
CVE-2023-40752
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...
PT-2023-27617 · Phpjabbers · Phpjabbers Make An Offer Widget
Name of the Vulnerable Software and Affected Versions: PHPJabbers Make an Offer Widget version 1.0 Description: There is a Cross Site Scripting XSS issue in the action parameter of the "index.php" file. This allows for potential malicious script execution. Recommendations: For PHPJabbers Make an...
CVE-2022-47008
An issue was discovered function maketempdir, and maketempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks...
DEBIAN-CVE-2022-47008
An issue was discovered function maketempdir, and maketempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks...
AZL-28053 CVE-2022-47008 affecting package binutils for versions less than 2.37-9
An issue was discovered function maketempdir, and maketempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks...
UBUNTU-CVE-2022-47008
An issue was discovered function maketempdir, and maketempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks...
GNU Binutils 安全漏洞
GNU Binutils is a set of open source tools for working with binaries such as target files, executables, libraries, etc., mainly used in the areas of compilation, debugging, reverse engineering and so on. A denial of service vulnerability exists in GNU Binutils, which stems from a memory leak in t...
WordPress Make Paths Relative Plugin <= 1.3.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software Make Paths Relative Type Plugin Vulnerable versions = 1.3.0 Fixed in 2.0.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-27433 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 624b43fd206b Credits Mika Required...
UBUNTU-CVE-2021-28429
Integer overflow vulnerability in avtimecodemakestring in libavutil/timecode.c in FFmpeg version 4.3.2, allows local attackers to cause a denial of service DoS via crafted .mov file...