251 matches found
CVE-2025-11956 XSS in Proliz's OBS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Stored XSS. This issue affects OBS Student Affairs Information System: before 25.0401...
CVE-2025-11956 XSS in Proliz's OBS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Stored XSS. This issue affects OBS Student Affairs Information System: before 25.0401...
CVE-2025-10914
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Reflected XSS. This issue affects OBS Student Affairs Information System: before V26.0401...
CVE-2025-10914 Reflected XSS in Proliz's OBS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Reflected XSS. This issue affects OBS Student Affairs Information System: before V26.0401...
CVE-2025-10914 Reflected XSS in Proliz's OBS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Proliz Software Ltd. Co. OBS Student Affairs Information System allows Reflected XSS. This issue affects OBS Student Affairs Information System: before V26.0401...
CVE-2025-10914
CVE-2025-10914 is a Reflected XSS vulnerability in Proliz Software Ltd. Co. OBS (Student Affairs Information System) prior to version V26.0401, caused by improper input neutralization during web page generation. Affected component is OBS web rendering where user-supplied input can be reflected in...
CVE-2025-41021
Stored Cross-Site Scripting XSS in Sergestec's Exito v8.0, consisting of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'obs' parameter in '/admin/index.php?action=productupdate'. This vulnerability could allow a remote user to send a specially...
CVE-2025-41021
Stored Cross-Site Scripting XSS in Sergestec's Exito v8.0, consisting of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'obs' parameter in '/admin/index.php?action=productupdate'. This vulnerability could allow a remote user to send a specially...
CVE-2025-41021 Stored Cross-Site Scripting (XSS) vulnerability in Sergestec's Exito
Stored Cross-Site Scripting XSS in Sergestec's Exito v8.0, consisting of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'obs' parameter in '/admin/index.php?action=productupdate'. This vulnerability could allow a remote user to send a specially...
CVE-2025-41021 Stored Cross-Site Scripting (XSS) vulnerability in Sergestec's Exito
Stored Cross-Site Scripting XSS in Sergestec's Exito v8.0, consisting of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'obs' parameter in '/admin/index.php?action=productupdate'. This vulnerability could allow a remote user to send a specially...
EUVD-2025-34732
Stored Cross-Site Scripting XSS in Sergestec's Exito v8.0, consisting of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'obs' parameter in '/admin/index.php?action=productupdate'. This vulnerability could allow a remote user to send a specially...
CVE-2025-41021
The CVE-2025-41021 entry describes a Stored Cross-Site Scripting (XSS) in Sergestec’s Exito v8.0. The root cause is lack of proper validation of user input in a POST to /admin/index.php?action=product_update via the obs parameter, enabling a stored XSS payload. Impact stated includes the possibil...
Sergestec Exito 跨站脚本漏洞
Sergestec Exito is a sales platform from Sergestec, Inc. A cross-site scripting vulnerability exists in Sergestec Exito version v8.0, which stems from insufficient validation of user input for the parameter obs in the file /admin/index.php, which could lead to a stored cross-site scripting attack...
EUVD-2010-3761
Malware in sbrugna...
EUVD-2017-18210
Malware in sbrugna...
EUVD-2025-5592
Malicious code in bioql PyPI...
EUVD-2024-51651
Malicious code in bioql PyPI...
EUVD-2023-23949
Malicious code in bioql PyPI...
EUVD-2025-5602
Malicious code in bioql PyPI...
EUVD-2024-19637
Malicious code in bioql PyPI...