EUVD-2021-30593

Malicious code in bioql PyPI...

EUVD-2022-4103

Malicious code in bioql PyPI...

nZEDb Cross-site Scripting (XSS) in the 404 error page

nZEDb before 0.8.0.0 has XSS in the 404 error page...

GHSA-H847-63FG-VM6C nZEDb Cross-site Scripting (XSS) in the 404 error page

nZEDb before 0.8.0.0 has XSS in the 404 error page...

CVE-2021-43686

nZEDb v0.4.20 is affected by a Cross Site Scripting XSS vulnerability in www/pages/api.php. The exit function will terminate the script and print the message which has the input $GET't'...

CVE-2021-43686

nZEDb v0.4.20 is affected by a Cross Site Scripting XSS vulnerability in www/pages/api.php. The exit function will terminate the script and print the message which has the input $GET't'...

Cross site scripting

nZEDb v0.4.20 is affected by a Cross Site Scripting XSS vulnerability in www/pages/api.php. The exit function will terminate the script and print the message which has the input $GET't'...

CVE-2021-43686

nZEDb v0.4.20 is affected by a Cross Site Scripting XSS vulnerability in www/pages/api.php. The exit function will terminate the script and print the message which has the input $GET't'...

CVE-2021-43686

CVE-2021-43686 affects nZEDb v0.4.20. The vulnerability is a Cross Site Scripting (XSS) in www/pages/api.php where the exit function terminates the script and prints the value provided via the input parameter $_GET['t']. The root cause is improper handling/filtering of input data in that path, en...

Nzedb 跨站脚本漏洞

Nzedb is a newsgroup indexer. A cross-site scripting vulnerability exists in NZEDb that stems from the exit function in the product www/pages/api.php file not effectively filtering input data. The vulnerability allows an attacker to print a $GETt message. The following products and versions are...

Cross-site Scripting (XSS)

nzedb/nzedb is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization of the page variable in the rendered 404 page, causing arbitrary scripts to execute...

CVE-2017-18286

nZEDb v0.7.3.3 has XSS in the 404 error page...

CVE-2017-18286

nZEDb v0.7.3.3 has XSS in the 404 error page...

Cross site scripting

nZEDb v0.7.3.3 has XSS in the 404 error page...

CVE-2017-18286

CVE-2017-18286 affects nZEDb v0.7.3.3, with a Cross‑Site Scripting (XSS) flaw on the 404 error page caused by inadequate input filtering in the 404 page rendering. This can allow an attacker to inject arbitrary script in the victim’s browser through the URL. Several sources corroborate the XSS is...

CVE-2017-18286

nZEDb v0.7.3.3 has XSS in the 404 error page...

nZEDb Cross-Site Scripting Vulnerability

nZEDb is a set of open source usenet news network indexer , it provides a Web-based front-end , support for searching , browsing usenet . A cross-site scripting vulnerability exists in the 404 error page in version 0.7.3.3 of nZEDb, which stems from the program failing to adequately filter input....

nZEDb 0.7.3.3 Cross Site Scripting

Exploit Title: nZEDb v0.7.3.3 - Reflected XSS Date: August 7, 2017 Software Link: https://nzedb.com/ Exploit Author: Kushal Jaisingh Contact: https://ca.linkedin.com/in/kushaljaisingh Category: WebApps, XSS 1. Description Reflected XSS is possible in nZEDb due to insufficient input sanitization...