CVE-2021-29029

A cross-site scripting XSS vulnerability in Bitweaver version 3.1.0 allows remote attackers to inject JavaScript via the /users/editpersonalpage.php URI...

Bitweaver 跨站脚本漏洞

Bitweaver is a free, open source web application framework and content management system. A cross-site scripting vulnerability exists in Bitweaver 3.1.0. A remote attacker can exploit this vulnerability to inject JavaScript via the /users/editpersonalpage.php URI...

facade.com XSS vulnerability

Open Bug Bounty ID: OBB-578311 Description| Value ---|--- Affected Website:| facade.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Discuz X1.5 个人主页存储型XSS

简要描述： 内容检查疏忽 详细说明： 进入他人的个人主页页面 留言提交 imgjavascript:alert/sogili//img 漏洞证明： 暂无图片证明。大型论坛都有权限限制。...

XSS in header for Personal Spaces

Create a user with username "alert'hahahaha' User creates a personal space Try to add a page to the personal space This is caused by code code However since the personal space doesn't work too well with usernames with crazy letters, I don't think its a Blocker...

tim-xss.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TIM Telecom Italia Mobile is a big italian phone company. The web portal TIM.it is vulnerable to XSS attacks in search function http://www.tim.it/ricerca/d/areaconsumer/ricercasito.do. An attacker can steal cookie session and access with victim...