420 matches found
Cross-site Scripting (XSS) - Reflected in kasuganosoras/pigeon
✍️ Description Cross-site Scripting XSS refers to client-side code injection attack wherein an attacker can execute malicious scripts into a legitimate website or web application. XSS occurs when a web application makes use of unvalidated or unencoded user input within the output it generates. The...
CVE-2021-31329
Cross Site Scripting XSS in Remote Clinic v2.0 via the "Chat" and "Personal Address" field on staff/register.php...
Cross site scripting
Cross Site Scripting XSS in Remote Clinic v2.0 via the "Chat" and "Personal Address" field on staff/register.php...
CVE-2021-31329
Cross Site Scripting XSS in Remote Clinic v2.0 via the "Chat" and "Personal Address" field on staff/register.php...
RemoteClinic 2 Cross Site Scripting
Exploit Title: Cross Site Scripting XSS RemoteClinic on register.php Author: nu11secur1ty Debug: g3ck0dr1v3r Date: 04.21.2021 Vendor: RemoteClinic Link: https://github.com/remoteclinic/RemoteClinic CVE: CVE-2021-30044 + Exploit Source:...
Cross site scripting
Cross Site Scripting XSS in Remote Clinic v2.0 via the First Name or Last Name field on staff/register.php...
Cross site scripting
Cross Site Scripting XSS in Remote Clinic v2.0 via the "Clinic Name", "Clinic Address", "Clinic City", or "Clinic Contact" field on clinics/register.php...
CVE-2021-30044
CVE-2021-30044 is a Cross-Site Scripting (XSS) vulnerability in Remote Clinic v2.0 exploitable via the First Name or Last Name field on staff/register.php. The connected sources confirm the affected product and entry details, including public exploit references and multiple security databases des...
CVE-2021-30042
Cross Site Scripting XSS in Remote Clinic v2.0 via the "Clinic Name", "Clinic Address", "Clinic City", or "Clinic Contact" field on clinics/register.php...
CVE-2021-30042
CVE-2021-30042 describes a stored XSS vulnerability in Remote Clinic v2.0 exploitable via the Clinic Name/Address/City/Contact fields on clinics/register.php. Multiple sources (NVD, Red Hat, CNVD, CVE List) confirm the issue and its impact to inject scripts. Public details do not provide a patche...
PT-2021-11588 · Monitorr · Monitorr
Name of the Vulnerable Software and Affected Versions: Monitorr version 1.7.6m Description: An authorization bypass issue in Monitorr/assets/config/ installation/ register.php allows an unauthorized person to create valid credentials. Recommendations: For Monitorr version 1.7.6m, consider...
CVE-2021-28007
Web Based Quiz System 1.0 is affected by cross-site scripting XSS in register.php through the name parameter...
CVE-2021-28007
Web Based Quiz System 1.0 is affected by cross-site scripting XSS in register.php through the name parameter...
Cross site scripting
Web Based Quiz System 1.0 is affected by cross-site scripting XSS in register.php through the name parameter...
CVE-2021-28007
CVE-2021-28007 affects Web Based Quiz System 1.0 and is a reflected/stored cross-site scripting (XSS) vulnerability in register.php via the name parameter. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE listing, CNNVD) with consistent description: XSS in the register.p...
CVE-2021-28007
Web Based Quiz System 1.0 is affected by cross-site scripting XSS in register.php through the name parameter...
CVE-2020-15599
Victor CMS through 2019-02-28 allows XSS via the register.php userfirstname or userlastname field...
Cross site scripting
Victor CMS through 2019-02-28 allows XSS via the register.php userfirstname or userlastname field...
CVE-2020-15599
Victor CMS through 2019-02-28 allows XSS via the register.php userfirstname or userlastname field...
CVE-2020-15599
Victor CMS (pre-2019-02-28) is affected by CVE-2020-15599 due to stored XSS in the register.php form fields user_firstname and user_lastname. The vulnerability arises from insufficient input validation on client-side data, enabling execution of injected scripts in user browsers. A publicly docume...