CVE-2025-66450

CVE-2025-66450 affects LibreChat. Versions 0.8.0 and below allow an attacker to modify the iconURL parameter in a POST request, causing malicious code to be stored in a chat and potentially shared with others. This can lead to privacy loss for users who view the shared chat link. The issue is add...

Cross site scripting

Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting PXSS – vulnerability may allow inserting scripts into unspecified input fields...

CVE-2022-46369

CVE-2022-46369 affects Rumpus FTP server, specifically version 9.0.7.1. The issue is described as a persistent cross-site scripting (PXSS) vulnerability that may allow inserting scripts into unspecified input fields. Multiple connected sources corroborate this vector and the affected product/vers...

CVE-2022-46369 Rumpus - FTP server Persistent cross-site scripting (PXSS) – Unspecified vector

Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting PXSS – vulnerability may allow inserting scripts into unspecified input fields...

MKPortal lenta module XSS Vulnerability

======================================= MKPortal lenta module XSS Vulnerability ======================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / / 0 0 ////// // // // // //...

MKPortal <= gbook module XSS Vulnerability

========================================== MKPortal = gbook module XSS Vulnerability ========================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / / 0 0 ////// // // ...

MKPortal Gbook Cross Site Scripting

========================================== MKPortal Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com...

Kandidat CMS versions 1.3.1 Cross Site Scripting Vulnerability

Exploit for unknown platform in category web applications ============================================================== Kandidat CMS versions 1.3.1 Cross Site Scripting Vulnerability ==============================================================...

MKPortal Cross Site Scripting

======================================= MKPortal Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com...

phpbms 0.96 - Multiple Vulnerabilities

phpbms 0.96 - Multiple Vulnerabilities phpBMS v0.96 phpbms.org eLwauxc2009, uasc.org.ua http://phpbms.org/trial/ SQL Inj -------------------------------------------------------------------------------------------------------------------------------------------------------------------------...

phpBMS 0.96 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =========================================== phpBMS 0.96 Multiple Remote Vulnerabilities =========================================== phpBMS v0.96 phpbms.org eLwauxc2009, uasc.org.ua http://phpbms.org/trial/ SQL Inj...

phpBMS 0.96 Multiple Remote Vulnerabilities

No description provided by source. phpBMS v0.96 phpbms.org eLwauxc2009, uasc.org.ua http://phpbms.org/trial/ SQL Inj -------------------------------------------------------------------------------------------------------------------------------------------------------------------------...

phpbms 0.96 - Multiple Vulnerabilities

phpBMS v0.96 phpbms.org eLwauxc2009, uasc.org.ua http://phpbms.org/trial/ SQL Inj ------------------------------------------------------------------------------------------------------------------------------------------------------------------------- $querystatement="SELECT...