11 matches found
EUVD-2023-45315
Malicious code in bioql PyPI...
EUVD-2023-45304
Malicious code in bioql PyPI...
CVE-2023-40762
User enumeration is found in PHPJabbers Fundraising Script v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...
CVE-2023-40751
PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting XSS via the "action" parameter of index.php...
Cross site scripting
PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting XSS via the "action" parameter of index.php...
PT-2023-27627 · Phpjabbers · Phpjabbers Fundraising Script
Name of the Vulnerable Software and Affected Versions: PHPJabbers Fundraising Script version 1.0 Description: The issue is related to user enumeration, which occurs during the password recovery process. A difference in messages could allow an attacker to determine if a user is valid or not,...
CVE-2023-40762
CVE-2023-40762 affects PHPJabbers Fundraising Script v1.0. The vulnerability is a user enumeration flaw during password recovery: different responses reveal whether a user exists, enabling brute-force attempts with valid accounts. CVSS v3.1 metrics indicate a NETWORK attack vector, LOW attack com...
Phpjabbers Fundraising Script 跨站脚本漏洞
Phpjabbers Fundraising Script is a simple open source Php donation script from Phpjabbers Serbia. It is used for charity fundraising. A security vulnerability exists in PHPJabbers Fundraising Script v1.0, which originates from a cross-site scripting vulnerability in the "action" parameter of the...
CVE-2023-40762
User enumeration is found in PHPJabbers Fundraising Script v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...
Phpjabbers Fundraising Script SQL注入漏洞
Phpjabbers Fundraising Script is a simple open source Php donation script from the Serbian company Phpjabbers. Phpjabbers Fundraising Script has a security vulnerability that stems from the discovery of a SQL injection vulnerability contained in the pjActionLoadForm function. No details of the...
Phpjabbers Fundraising Script SQL注入漏洞
Phpjabbers Fundraising Script is a simple open source Php donation script from the Serbian company Phpjabbers. Phpjabbers Fundraising Script has a security vulnerability that stems from the inclusion of an SQL injection in the pjActionSetAmount function...