2 matches found
Unmark info.php file cross-site scripting vulnerability
Unmark is an open source to-do list application for bookmarking. A cross-site scripting vulnerability exists in Unmark 1.9.3 and earlier versions, which stems from the lack of effective filtering and escaping of user-supplied data in the parameter Title in the file application/views/marks/info.ph...
PT-2025-37364
Name of the Vulnerable Software and Affected Versions: cdevroe unmark versions up to 1.9.3 Description: A cross-site scripting issue exists due to manipulation of the Title argument. This impacts an unknown function within the application/views/marks/info.php file. The attack can be carried out...