The Scratch Channel 跨站脚本漏洞

The Scratch Channel is a project site of The Scratch Channel open source. A cross-site scripting vulnerability exists in The Scratch Channel, which stems from improperly cleaned text box input and could lead to a cross-site scripting attack...

Spring Session 3.0.0-RC1

Spring Session 3.1.0-RC1 has been released. The biggest news from this release is that Spring Session Geode was removed which means all of the Spring Modules now belong to the same lifecycle. This means that the Spring Session BOM no longer uses CalVer and instead uses the same version as the...

Web exhibition PHP foreign trade enterprise website red style front SQL injection vulnerability

Netzhan Technology Beijing Century Netzhan Technology Co., Ltd. is an Internet service operator specializing in the field of exhibition shows. SQL injection vulnerability exists in the red style frontend of Nethub's PHP foreign trade enterprise website, which can be exploited by attackers to obta...

phpMyBackupPro 2.5 - Remote Command Execution Cross-Site Request Forgery

phpMyBackupPro 2.5 - Remote Command Execution Cross-Site Request Forgery + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PHPMYBACKUPPRO-v2.5-RCE.txt Vendor: ============================= www.phpmybackuppro.net project site:...