3 matches found
PT-2026-48995
A stored cross-site scripting vulnerability exists in MISP when the Overmind theme is used. The setHomePage endpoint previously saved the user-controlled path value through setSettingInternal, bypassing the normal setSetting validation logic, including validate homepage, which requires homepage...
SQL Injection Vulnerability in News_view.asp Page of Ningbo Yuming Website Building System
Ningbo Yuming Network Station Building System is an enterprise station building system. There is a SQL injection vulnerability in the newsview.asp page of Ningbo Yuming Network System, which can be exploited by attackers to obtain sensitive information from the database...
CVE-2005-1440
Multiple cross-site scripting XSS vulnerabilities in ViArt Shop Enterprise 2.1.6 allow remote attackers to inject arbitrary web script or HTML via 1 various parameters to basket.php, 2 the nickname, email, topic, and message fields in forum.php, as demonstrated using forumnewthread.php and...