CVE-2023-1051 XSS in As Koc Web Report System

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in As Koc Energy Web Report System allows Reflected XSS. This issue affects Web Report System: before 23.03.10...

Cross site scripting

The configuration backend of the web-based management is vulnerable to reflected XSS Cross-Site Scripting attacks that targets the users browser. This leads to a limited impact of confidentiality and integrity but no impact of availability...

Cross site scripting

In Apache Druid 0.22.1 and earlier, certain specially-crafted links result in unescaped URL parameters being sent back in HTML responses. This makes it possible to execute reflected XSS attacks...

Cross-site Scripting (XSS)

php-proxy-app is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization on the URL field in index.php, allowing reflected XSS attacks...

Uber: SSL-protected Reflected XSS in m.uber.com

Summary m.uber.com is susceptible to reflected XSS Security Impact A malformed URL can be used to render arbitrary SSL-protected web pages from m.uber.com Reproduction Steps https://m.uber.com/?bjbxm%3c%2fscript%3e%3cscript%3ealert1%3c%2fscript%3exrii5=1 Specifics From the rendered web page:...