CVE-2026-3862 Cross-Site Scripting Vulnerability in SiteMinder Administrative UI

Cross-site Scripting XSS allows an attacker to submit specially crafted data to the application which is returned unaltered in the resulting web page...

Input Reflected

This is an informational plugin to inform that user data controlled input is reflected in the response. No source data...

Code injection

ConnectWise Control before 22.9.10032 formerly known as ScreenConnect fails to validate user-supplied parameters such as the Bin/ConnectWiseControl.Client.exe h parameter. This results in reflected data and injection of malicious code into a downloaded executable. The executable can be used to...

CVE-2023-25719

ConnectWise Control before 22.9.10032 formerly known as ScreenConnect fails to validate user-supplied parameters such as the Bin/ConnectWiseControl.Client.exe h parameter. This results in reflected data and injection of malicious code into a downloaded executable. The executable can be used to...

CVE-2017-7678

In Apache Spark before 2.2.0, it is possible for an attacker to take advantage of a user's trust in the server to trick them into visiting a link that points to a shared Spark cluster and submits data including MHTML to the Spark master, or history server. This data, which could contain a script,...

chatNow 0.0.0 Cross Site Scripting

Exploit Title: chatNow - Reflected XSS Date: 2016-08-23 Exploit Author: HaHwul Exploit Author Blog: www.hahwul.com Vendor Homepage: http://chatnow.thiagosf.net/ Software Link: https://github.com/thiagosf/chatNow/archive/master.zip Version: Latest commit Tested on: Debian wheezy Vulnerability This...

Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Windows)

This host is installed with Apple Safari and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbapplesafariwebcorewebkitxssvulnwin.nasl 6022 2017-04-25 12:51:04Z teissa $ Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability Windows Authors: Antu Sanadi...