CVE-2023-40921

Common Services soliberte is affected by a SQL Injection in functions/point_list.php, exploitable via lat and lng parameters. Before v4.3.03, this class of vulnerability can disclose sensitive data. Affected file/version: soliberte prior to 4.3.03. Root cause: improper handling of input in SQL qu...

GNUBOARD5 Cross-Site Scripting Vulnerability

GNUBOARD5 is a Web forum system based on PHP and MySQL. A cross-site scripting vulnerability exists in the pointlist.php file in GNUBOARD5 versions prior to 5.3.1.6. A remote attacker can exploit this vulnerability to execute arbitrary web script or HTML with the 'title' parameter...

CVE-2018-15583

Cross-Site Scripting XSS vulnerability in pointlist.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...

Cross site scripting

Cross-Site Scripting XSS vulnerability in pointlist.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...

CVE-2018-15583

Cross-Site Scripting XSS vulnerability in pointlist.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...

CVE-2018-15583

GNUBOARD5 (web forum, PHP/MySQL) contains a Cross-Site Scripting (XSS) flaw in point_list.php, exploitable via the popup title parameter. Affected versions are prior to 5.3.1.6. The vulnerability could allow remote attackers to execute arbitrary web script/HTML. Remediation: upgrade to GNUBOARD5 ...