120 matches found
CVE-2023-41446
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted script to the title parameter in the index.php component...
CVE-2023-41450
An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter...
CVE-2023-41446
CVE-2023-41446 affects phpkobo AjaxNewTicker version 1.0.5. The vulnerability is a Cross Site Scripting flaw in the index.php component, exploitable via a crafted script in the title parameter to trigger arbitrary code execution. The NVD/CVE entry rates it as CVSS v3.1 Base Score 6.1 (Medium) wit...
CVE-2023-41447
CVE-2023-41447 affects phpkobo AjaxNewTicker v1.0.5. It reports a Cross‑Site Scripting flaw that enables a remote attacker to execute arbitrary code via a crafted payload to the subcmd parameter in index.php. The NVD entry lists a base score of 6.1 (Medium). Exploitation status is not provided in...
CVE-2023-41450
PHPkobo AjaxNewsTicker v1.0.5 is affected. The vulnerability allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter. Root cause is improper handling of the reque parameter leading to code execution. The issue has high impact (C/H/I/A = HIGH) per CVSS 3.1. ...
phpkobo AjaxNewTicker Code Injection Vulnerability
phpkobo AjaxNewTicker is an application from phpkobo Inc. A code injection vulnerability exists in phpkobo AjaxNewTicker version v.1.0.5, which originates from a vulnerability that allows remote attackers to execute arbitrary code via a crafted payload...
phpkobo AjaxNewTicker Cross-Site Scripting Vulnerability
phpkobo AjaxNewTicker is an application from phpkobo Inc. A cross-site scripting vulnerability exists in phpkobo AjaxNewTicker version v.1.0.5, which stems from the presence of a cross-site scripting vulnerability that could allow a remote attacker to execute arbitrary code via a crafted script...
phpkobo AjaxNewTicker Cross-Site Scripting Vulnerability
phpkobo AjaxNewTicker is an application from phpkobo Inc. A cross-site scripting vulnerability exists in phpkobo AjaxNewTicker version v.1.0.5, which stems from the presence of a cross-site scripting vulnerability that could allow a remote attacker to execute arbitrary code via a specially crafte...
CVE-2023-41452
Cross Site Request Forgery vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the txt parameter in the index.php component...
CVE-2023-41448
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the ID parameter in the index.php component...
CVE-2023-41449
An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter...
CVE-2023-41451
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the txt parameter in the index.php component...
CVE-2023-41452
Cross Site Request Forgery vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the txt parameter in the index.php component...
CVE-2023-41449
An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter...
CVE-2023-41453
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the cmd parameter in the index.php component...
CVE-2023-41448
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the ID parameter in the index.php component...
CVE-2023-41449
An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter...
CVE-2023-41453
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the cmd parameter in the index.php component...
CVE-2023-41452
Cross Site Request Forgery vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the txt parameter in the index.php component...
CVE-2023-41445
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the index.php component...