EUVD-2023-12645

Malicious code in bioql PyPI...

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository projectsend/projectsend prior to r1606...

ProjectSend 跨站脚本漏洞

ProjectSend formerly cFTP is a set of self-hosted applications based on PHP and MySQL.A cross-site scripting vulnerability exists in versions prior to ProjectSend r1606, which could be exploited by attackers to execute arbitrary javascript in the administrator account...