10 matches found
CVE-2026-50874
An OS command injection vulnerability in the /manage/features/media component of kanishka-linux Reminiscence v0.3.0 allows attackers to execute arbitrary commands via supplying a crafted input...
WEBIGniter 代码问题漏洞
WEBIGniter is a content management system from WEBIGniter, Inc. A code issue vulnerability exists in WEBIGniter version 28.7.23, which stems from a file upload vulnerability in the media feature that could lead to the upload and execution of dangerous PHP files...
GHSA-7CMP-CGG8-4C82 Silverstripe Framework has a XSS via insert media remote file oembed
Impact When using the "insert media" functionality, the linked oEmbed JSON includes an HTML attribute which will replace the embed shortcode. The HTML is not sanitized before replacing the shortcode, allowing a script payload to be executed on both the CMS and the front-end of the website...
Margox Braft-Editor Cross-site Scripting Vulnerability
Cross Site Scripting XSS vulnerability in margox braft-editor version 2.3.8, allows remote attackers to execute arbitrary code via the embed media feature...
GHSA-JFRF-VV54-J2JG Margox Braft-Editor Cross-site Scripting Vulnerability
Cross Site Scripting XSS vulnerability in margox braft-editor version 2.3.8, allows remote attackers to execute arbitrary code via the embed media feature...
CVE-2021-27524
Cross Site Scripting XSS vulnerability in margox braft-editor version 2.3.8, allows remote attackers to execute arbitrary code via the embed media feature...
Cross site scripting
Cross Site Scripting XSS vulnerability in margox braft-editor version 2.3.8, allows remote attackers to execute arbitrary code via the embed media feature...
CVE-2021-27524
Cross Site Scripting XSS vulnerability in margox braft-editor version 2.3.8, allows remote attackers to execute arbitrary code via the embed media feature...
CVE-2021-27524
Cross Site Scripting XSS vulnerability in margox braft-editor version 2.3.8, allows remote attackers to execute arbitrary code via the embed media feature...
PT-2023-12118 · Unknown · Margox Braft-Editor
Name of the Vulnerable Software and Affected Versions: margox braft-editor version 2.3.8 Description: The issue is a Cross Site Scripting XSS vulnerability that allows remote attackers to execute arbitrary code via the embed media feature. This can lead to unauthorized access and malicious...