CVE-2024-28715

Cross Site Scripting vulnerability in DOraCMS v.2.18 and before allows a remote attacker to execute arbitrary code via the markdown0 function in the /app/public/apidoc/oas3/wrap-components/markdown.jsx endpoint...

CVE-2024-28715

Cross Site Scripting vulnerability in DOraCMS v.2.18 and before allows a remote attacker to execute arbitrary code via the markdown0 function in the /app/public/apidoc/oas3/wrap-components/markdown.jsx endpoint...

DoraCMS Security Vulnerability

DoraCMS is a software application. A content management system written based on Nodejs + eggjs + mongodb. A security vulnerability exists in DoraCMS v.2.1.8 and earlier versions, which stems from a cross-site scripting vulnerability that allows remote attackers to execute arbitrary code via the...

CVE-2023-5835 hu60t hu60wap6 ubbparser.php markdown cross site scripting

A vulnerability classified as problematic was found in hu60t hu60wap6. Affected by this vulnerability is the function markdown of the file src/class/ubbparser.php. The manipulation leads to cross site scripting. The attack can be launched remotely. This product does not use versioning. This is wh...

hu60wap6 Cross-Site Scripting Vulnerability

hu60wap6 is a community system by the Tiger Greenwood team hu60t team. A cross-site scripting vulnerability exists in hu60wap6, which stems from a markdown function in the file src/class/ubbparser.php that can lead to cross-site scripting...

PT-2023-32367 · Hu60T +1 · Hu60T +1

Name of the Vulnerable Software and Affected Versions: hu60t hu60wap6 affected versions not specified Description: A problematic vulnerability was found in the markdown function of the file src/class/ubbparser.php. This issue leads to cross-site scripting and can be exploited remotely...

CVE-2018-11504

The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file, as demonstrated by mkd2html...