13 matches found
EUVD-2025-21881
Malicious code in bioql PyPI...
CVE-2025-7786
A vulnerability, which was classified as problematic, has been found in Gnuboard g6 up to 6.0.10. This issue affects some unknown processing of the file /bbs/scrappopinupdate/qa/ of the component Post Reply Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2025-7786
A vulnerability, which was classified as problematic, has been found in Gnuboard g6 up to 6.0.10. This issue affects some unknown processing of the file /bbs/scrappopinupdate/qa/ of the component Post Reply Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2025-7786 Gnuboard g6 Post Reply qa cross site scripting
A vulnerability, which was classified as problematic, has been found in Gnuboard g6 up to 6.0.10. This issue affects some unknown processing of the file /bbs/scrappopinupdate/qa/ of the component Post Reply Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2025-7786 Gnuboard g6 Post Reply qa cross site scripting
A vulnerability, which was classified as problematic, has been found in Gnuboard g6 up to 6.0.10. This issue affects some unknown processing of the file /bbs/scrappopinupdate/qa/ of the component Post Reply Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2024-8783 OpenTibiaBR MyAAC Post Reply new_post.php cross site scripting
A vulnerability classified as problematic has been found in OpenTibiaBR MyAAC up to 0.8.16. Affected is an unknown function of the file system/pages/forum/newpost.php of the component Post Reply Handler. The manipulation of the argument posttopic leads to cross site scripting. It is possible to...
CVE-2024-8783 OpenTibiaBR MyAAC Post Reply new_post.php cross site scripting
A vulnerability classified as problematic has been found in OpenTibiaBR MyAAC up to 0.8.16. Affected is an unknown function of the file system/pages/forum/newpost.php of the component Post Reply Handler. The manipulation of the argument posttopic leads to cross site scripting. It is possible to...
MyAAC 跨站脚本漏洞
MyAAC is an OpenTibiaBR open source free and open source Automated Account Creator AAC written in PHP. A cross-site scripting vulnerability exists in MyAAC version 0.8.16 and prior versions, which stems from a cross-site scripting attack in the file system/pages/forum/newpost.php of the component...
CVE-2021-25984 FactorJS - Stored Cross-Site Scripting (XSS) in Post Reply Functionality
In Factor App Framework & Headless CMS forum plugin, versions v1.3.3 to v1.8.30, are vulnerable to stored Cross-Site Scripting XSS at the “post reply” section. An unauthenticated attacker can execute malicious JavaScript code and steal the session cookies...
CVE-2021-25984 FactorJS - Stored Cross-Site Scripting (XSS) in Post Reply Functionality
In Factor App Framework & Headless CMS forum plugin, versions v1.3.3 to v1.8.30, are vulnerable to stored Cross-Site Scripting XSS at the “post reply” section. An unauthenticated attacker can execute malicious JavaScript code and steal the session cookies...
MyBB Visual Editor 1.8.18 - Cross-Site Scripting
Title: MyBB Visual Editor 1.8.18 - Cross-Site Scripting Author: Numan OZDEMIR Vendor Homepage: mybb.com Software Link: https://mybb.com/download/ Version: Up to v1.8.18. Fixed in v1.8.19. PoC Video: https://numanozdemir.com/mybb/xss.mp4 CVE: CVE-2018-17128 Description: Attacker can run JavaScript...
CVE-2005-3412
CVE-2005-3412 describes an XSS vulnerability in Elite Forum 1.0.0.0 that allows remote attackers to inject arbitrary script by posting a reply containing a javascript: URL inside an tag. The provided description identifies the vulnerable vector and affected product. No further exploitation detai...
CVE-2005-3412
Cross-site scripting XSS vulnerability in Elite Forum 1.0.0.0 allows remote attackers to inject arbitrary web script or HTML via a Post Reply to a topic, in which the reply contains a javascript: URL in an tag...