81 matches found
CVE-2024-24847
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jgadbois CalculatorPro Calculators allows Reflected XSS.This issue affects CalculatorPro Calculators: from n/a through 1.1.7...
PT-2023-28035 · Giovambattista Fazioli · Wp Bannerize Pro
Name of the Vulnerable Software and Affected Versions: Giovambattista Fazioli WP Bannerize Pro plugin versions = 1.6.9 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website without proper...
PT-2023-31351 · Librenms · Librenms
Name of the Vulnerable Software and Affected Versions: librenms versions prior to 23.9.0 Description: The issue is related to Cross-site Scripting XSS - Reflected in the GitHub repository librenms/librenms. This type of attack occurs when an application includes user input in its responses withou...
PT-2023-23681 · Wpdeveloper · Wpdeveloper Essential Addons For Elementor
Name of the Vulnerable Software and Affected Versions: WPDeveloper Essential Addons for Elementor Pro plugin versions = 5.4.8 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially...
PT-2022-23833 · Unknown · Alton Management System
Name of the Vulnerable Software and Affected Versions: Loan Management System version 1.0 Description: The Loan Management System has a persistent cross-site scripting issue. This means that an attacker can inject malicious scripts into the system, which will be executed by other users' browsers,...
CVE-2022-20713
A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to conduct browser-based attacks against users of an affected device. This vulnerability is du...
CVE-2022-29540
resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,...
PrinterLogic Web Stack Cross-Site Scripting Vulnerability
PrinterLogic Web Stack PrinterLogic Printer Installer is a native Web application from PrinterLogic, Inc. It enables It departments to manage and automate the creation/propagation of PrinterObjects and printer drivers across print environments from a single management console. PrinterLogic Web...
CVE-2021-42639
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to multiple reflected cross site scripting vulnerabilities. Attacker controlled input is reflected back in the page without sanitization...
Cross site scripting
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to multiple reflected cross site scripting vulnerabilities. Attacker controlled input is reflected back in the page without sanitization...
CVE-2021-42639
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to multiple reflected cross site scripting vulnerabilities. Attacker controlled input is reflected back in the page without sanitization...
WordPress 插件跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...
CVE-2020-15374
Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...
CVE-2020-15374
Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...
Input validation
Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...
CVE-2020-15374
Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...
BSA-2020-1084
Security Advisory ID : BSA-2020-1084 Component : Rest API Revision : 2.0 Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input. Note: Brocade Fabric OS versions before v8.2.1 are not affected. Rest API is...
CVE-2020-13821
An issue was discovered in HiveMQ Broker Control Center 4.3.2. A crafted clientid parameter in an MQTT packet sent to the Broker is reflected in the client section of the management console. The attacker's JavaScript is loaded in a browser, which can lead to theft of the session and cookie of the...
CVE-2019-6968
The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...
8x8: Cross-site Scripting (XSS) - Reflected
The password reset page of the managers portal of VCC reflected input of the tenant parameter without proper encoding considerations. Just wanted to disclose as it's my first ever report on h1...