21 matches found
EUVD-2020-10617
Malware in sbrugna...
EUVD-2022-24505
Malicious code in bioql PyPI...
CVE-2022-1163
Cross-site Scripting XSS - Stored in GitHub repository mineweb/minewebcms prior to next...
CVE-2020-18693
Cross Site Scripting XSS in MineWebCMS v1.7.0 allows remote attackers to execute arbitrary code by injecting malicious code into the 'Title' field of the component '/admin/news'...
minewebcms 1.15.2 - Cross-site Scripting (XSS)
Exploit Title: minewebcms 1.15.2 - Cross-site Scripting XSS Google Dork: NA Date: 02/20/2022 Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://mineweb.org/ Software Link: https://github.com/mineweb/minewebcms Version: 1.15.2 Tested on: KALI OS CVE : CVE-2022-1163...
minewebcms 1.15.2 - Cross-site Scripting Vulnerability
Exploit Title: minewebcms 1.15.2 - Cross-site Scripting XSS Google Dork: NA Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://mineweb.org/ Software Link: https://github.com/mineweb/minewebcms Version: 1.15.2 Tested on: KALI OS CVE : CVE-2022-1163 --------------- Steps to...
minewebcms 1.15.2 Cross Site Scripting
Exploit Title: minewebcms 1.15.2 - Cross-site Scripting XSS Google Dork: NA Date: 02/20/2022 Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://mineweb.org/ Software Link: https://github.com/mineweb/minewebcms Version: 1.15.2 Tested on: KALI OS CVE : CVE-2022-1163...
CVE-2022-1163
Cross-site Scripting XSS - Stored in GitHub repository mineweb/minewebcms prior to next...
CVE-2022-1163 Cross-site Scripting (XSS) - Stored in mineweb/minewebcms
Cross-site Scripting XSS - Stored in GitHub repository mineweb/minewebcms prior to next...
CVE-2022-1163
MineWebCMS (GitHub repo mineweb/minewebcms) 1.15.2 contains a stored Cross-site Scripting (XSS) vulnerability. The issue is triggered by input fields in the admin interface (e.g., Link Name and URL) that accept data from untrusted sources and later render it in pages, enabling script execution in...
MineWebCMS 跨站脚本漏洞
MineWebCMS is a software application. A CMS i.e. Content Management System, in addition to being a fully customizable and intuitive site that will fit perfectly on your Minecraft server. MineWebCMS suffers from a cross-site scripting vulnerability, there is no information about this vulnerability...
Cross-site Scripting (XSS) - Stored
Description Stored cross-site scripting also known as second-order or persistent XSS arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way. Proof of Concept Steps to Reproduce:- = Install the WebApp and Setup it =...
Cross-site Scripting (XSS) - Stored in mineweb/minewebcms
Description A malicious actor is able to add new Notification with a malicious payload, and upon the user receives the notification, the malicious payload is being executed. Proof of Concept - 1; Log in with any user, who is able to submit notifications - 2; Create a new notification at...
Cross-site Scripting (XSS) - Stored in mineweb/minewebcms
Description A malicious actor is able to add a malicious payload as a new Page Title, and after every time any administrative user visits the /admin/pages route, the XSS payload is executed. Proof of Concept 1;Create a new Page at the following route: /admin/pages/add. Use the following payload a...
CVE-2020-18693
Cross Site Scripting XSS in MineWebCMS v1.7.0 allows remote attackers to execute arbitrary code by injecting malicious code into the 'Title' field of the component '/admin/news'...
CVE-2020-18693
Cross Site Scripting XSS in MineWebCMS v1.7.0 allows remote attackers to execute arbitrary code by injecting malicious code into the 'Title' field of the component '/admin/news'...
Cross site scripting
Cross Site Scripting XSS in MineWebCMS v1.7.0 allows remote attackers to execute arbitrary code by injecting malicious code into the 'Title' field of the component '/admin/news'...
CVE-2020-18693
The CVE-2020-18693 issue affects MineWebCMS v1.7.0, with a Cross Site Scripting (XSS) flaw in the Title field of the /admin/news component. The vulnerability is described as allowing remote attackers to execute arbitrary code by injecting malicious code into the Title field, indicating potential ...
CVE-2020-18693
Cross Site Scripting XSS in MineWebCMS v1.7.0 allows remote attackers to execute arbitrary code by injecting malicious code into the 'Title' field of the component '/admin/news'...
MineWebCMS 跨站脚本漏洞
MineWebCMS is a software application. A CMS i.e. Content Management System, in addition to being a fully customizable and intuitive site that will fit perfectly on your Minecraft server. A cross-site scripting vulnerability exists in MineWebCMS that stems from the Title module of the product...