6 matches found
EUVD-2022-4639
Malicious code in bioql PyPI...
GO-2022-0308 Gitea displaying raw OpenID error in UI in github.com/go-gitea/gitea
Gitea displaying raw OpenID error in UI in github.com/go-gitea/gitea...
SUSE CVE-2016-5731
Cross-site scripting XSS vulnerability in examples/openid.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via vectors involving an OpenID error message...
GHSA-MWM8-36C5-J5CF phpMyAdmin Cross-site scripting (XSS) vulnerability
Cross-site scripting XSS vulnerability in examples/openid.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via vectors involving an OpenID error message...
gitea -- multiple vulnerabilities
Gitea Team reports: Do not display the raw OpenID error in the UI When redirecting clean the path to avoid redirecting to external site Prevent DeleteFilePost doing arbitrary deletion...
CVE-2016-5731
CVE-2016-5731 is a cross‑site scripting (XSS) vulnerability in the phpMyAdmin OpenID authentication flow. The issue affects phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3, where an OpenID error message can be manipulated to inject arbitrary web script or HTML via...