WordPress Job Board by BestWebSoft plugin <= 1.2.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting via $_GET Array Storage vulnerability

Cross-Site Request Forgery to Stored Cross-Site Scripting via $GET Array Storage vulnerability discovered by Jamshed Yergashvoyev CVE Guy - Turan Security in WordPress Plugin Job Board by BestWebSoft versions = 1.2.1...

CVE-2021-26281

Some parameters of the alarm clock module are improperly stored, leaking some sensitive information...

CVE-2024-48228

An issue was found in funadmin 5.0.2. The selectfiles method in \backend\controller\sys\Attachh.php directly stores the passed parameters and values into the param parameter without filtering, resulting in Cross Site Scripting XSS...

D-Link DAP-1150 index.cgi多个参数存储型跨站脚本漏洞

D-link DAP-1150是一款路由器设备。 D-link DAP-1150不正确处理add函数中'resbuf'参数中的'Name', 'IP Addresses Source', 'Destination', 'Ports Source'和'Destination'字段数据，允许攻击者利用漏洞构建恶意URI，诱使用户解析，可获取敏感信息或劫持用户会话。 0 D-link DAP-1150 目前没有详细解决方案： http://www.dlink.com.au/products/?pid=735...

Overflow exploit technology mining preliminary-vulnerability warning-the black bar safety net

From MS03-0 4 9 exploit see to debug the system process Text/figure dangguai27 This article I mainly from the period of time the use of the WorkStation service overflow vulnerability, MS03-0 4 9 process encountered some problems as the basis, to talk about how I through the system the process of...