31 matches found
EUVD-2026-13730
DooTask v1.6.27 has a Cross-Site Scripting XSS vulnerability in the /manage/project/ page via the input field projectDesc...
CVE-2026-29828
DooTask v1.6.27 has a Cross-Site Scripting XSS vulnerability in the /manage/project/ page via the input field projectDesc...
PT-2026-26643
CVE-2026-29828 DooTask v1.6.27 has a Cross-Site Scripting XSS vulnerability in the /manage/project/id page via the input field projectDesc. https://t.co/IdJyEMWfTe...
CVE-2026-29828
DooTask v1.6.27 has a Cross-Site Scripting XSS vulnerability in the /manage/project/ page via the input field projectDesc...
CVE-2026-29828
CVE-2026-29828 affects DooTask v1.6.27 with a Cross-Site Scripting (XSS) vulnerability on the /manage/project/ page via the projectDesc input. The root cause and vulnerable component are described across multiple sources as an XSS in the manage/project interface; no explicit exploit details or re...
CVE-2026-29828
DooTask v1.6.27 has a Cross-Site Scripting XSS vulnerability in the /manage/project/ page via the input field projectDesc...
DooTask 安全漏洞
DooTask is a task management tool developed by Kuaifan’s individual developers. Version 1.6.27 of DooTask contains a security vulnerability. This vulnerability stems from improper handling of the projectDesc input field in the /manage/project/ page, which may lead to cross-site scripting attacks...
CVE-2026-29828
DooTask v1.6.27 has a Cross-Site Scripting XSS vulnerability in the /manage/project/ page via the input field projectDesc...
WordPress Visual Website Collaboration, Feedback & Project Management - Atarim plugin <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File Deletion vulnerability
WordPress Visual Website Collaboration, Feedback & Project Management - Atarim plugin = 4.0.9 - Missing Authorization to Authenticated Subscriber+ Project Page/File Deletion vulnerability discovered by WordFence in WordPress Plugin Atarim versions = 4.0.9...
CVE-2025-51962
A HTML Injection vulnerability in the comment section of the project page in MicroStudio 24.01.29 allows remote attackers to inject arbitrary web script or HTML via the text parameter of addprojectcomment function...
EUVD-2025-203408
A HTML Injection vulnerability in the comment section of the project page in MicroStudio 24.01.29 allows remote attackers to inject arbitrary web script or HTML via the text parameter of addprojectcomment function...
CVE-2025-51962
A HTML Injection vulnerability in the comment section of the project page in MicroStudio 24.01.29 allows remote attackers to inject arbitrary web script or HTML via the text parameter of addprojectcomment function...
EUVD-2025-26208
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-22167
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting all versions starting from 12.1. Incorrect headers in specific project page allows attacker to have a temporary...
CVE-2021-22167
An issue has been discovered in GitLab affecting all versions starting from 12.1. Incorrect headers in specific project page allows attacker to have a temporary read access to the private repository...
Project Worlds Student Project Allocation System SQL注入漏洞
Project Worlds Student Project Allocation System is a student project allocation system from Project Worlds, Inc. Project Worlds Student Project Allocation System version 1.0 has a SQL injection vulnerability that originates in the /student/projectselection/removeproject. The no parameter in the...
[SECURITY] Fedora 36 Update: golang-gioui-0-9.20201225git18d4dbf.fc36
Immediate mode GUI programs in Go for Android, iOS, macOS, Linux, FreeBSD, OpenBSD, Windows, and WebAssembly experimental. See the project page gioui. org for documentation and more information...
[SECURITY] Fedora 35 Update: golang-gioui-0-8.20201225git18d4dbf.fc35
Immediate mode GUI programs in Go for Android, iOS, macOS, Linux, FreeBSD, OpenBSD, Windows, and WebAssembly experimental. See the project page gioui. org for documentation and more information...
Spring Shell 2.1.0-RC1 is now available
On behalf of the team and everyone who has contributed, Im happy to announce that Spring Shell 2.1.0-RC1 has been released and is now available from . Please see the release notes for more details. Thanks to all those who have contributed with issue reports and pull requests. How can you help?...
[SECURITY] Fedora 36 Update: golang-gioui-0-8.20201225git18d4dbf.fc36
Immediate mode GUI programs in Go for Android, iOS, macOS, Linux, FreeBSD, OpenBSD, Windows, and WebAssembly experimental. See the project page gioui. org for documentation and more information...