CVE-2023-4118

A vulnerability, which was classified as problematic, was found in Cute Http File Server 2.0. This affects an unknown part of the component Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...

CVE-2023-4116

A vulnerability classified as problematic was found in PHP Jabbers Taxi Booking 2.0. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument index leads to cross site scripting. The attack can be launched remotely. The associated...

CVE-2023-3887

A vulnerability was found in Campcodes Beauty Salon Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/search-appointment.php. The manipulation of the argument searchdata leads to cross site scripting. The atta...

CVE-2023-3888

A vulnerability was found in Campcodes Beauty Salon Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack may be...

CVE-2023-3858

A vulnerability has been found in phpscriptpoint Car Listing 1.6 and classified as problematic. This vulnerability affects unknown code of the file /search.php. The manipulation of the argument country/state/city leads to cross site scripting. The attack can be initiated remotely. VDB-235210 is t...

CVE-2023-3840

A vulnerability, which was classified as problematic, was found in NxFilter 4.3.2.5. This affects an unknown part of the file /report,daily.jsp?stime=2023%2F07%2F12&timeOption=yesterday&. The manipulation of the argument user leads to cross site scripting. It is possible to initiate the attack...

PT-2023-26391 · Dedebiz · Dedebiz

Name of the Vulnerable Software and Affected Versions: DedeBIZ version 6.2.10 Description: A problematic issue was found in DedeBIZ, affecting an unknown functionality of the file /admin/vote edit.php. This issue leads to cross site scripting and can be launched remotely. The exploit has been...

CVE-2023-3834

A vulnerability was found in Bug Finder EX-RATE 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /user/ticket/create of the component Ticket Handler. The manipulation of the argument message leads to cross site scripting. The attack may be...

PT-2023-26009 · Unknown · Creativeitem Mastery Lms

Name of the Vulnerable Software and Affected Versions: Creativeitem Mastery LMS version 1.2 Description: A problematic vulnerability has been found in Creativeitem Mastery LMS. This issue affects an unknown part of the file /browse. The manipulation of the argument search/featured/recommended/ski...

PT-2023-25719 · Livelyworks · Livelyworks Articart

Name of the Vulnerable Software and Affected Versions: LivelyWorks Articart version 2.0.1 Description: A vulnerability has been found in LivelyWorks Articart, affecting an unknown functionality of the file "/items/search". The manipulation of the search term argument leads to cross-site scripting...

CVE-2023-3660

A vulnerability was found in Campcodes Retro Cellphone Online Store 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/addusermodal.php. The manipulation of the argument un leads to cross site scripting. The attack may be launched remotely...

The vulnerability in the virtual learning environment Moodle arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability in the virtual learning environment Moodle exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

CVE-2023-2740

A vulnerability, which was classified as problematic, has been found in SourceCodester Guest Management System 1.0. Affected by this issue is some unknown functionality of the file dateTest.php of the component GET Parameter Handler. The manipulation of the argument name leads to cross site...

CVE-2023-2521

A vulnerability was found in NEXTU NEXT-7004N 3.0.1. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formFilter of the component POST Request Handler. The manipulation of the argument url with the input leads to cross site scripting. It is possible to...

CVE-2023-2425

A vulnerability was found in SourceCodester Simple Student Information System 1.0. It has been classified as problematic. This affects an unknown part of the file /classes/Master.php?f=savecourse of the component Add New Course. The manipulation of the argument name with the input...

PT-2023-9950 · Unknown · Kau-Boy Backend Localization Plugin

Name of the Vulnerable Software and Affected Versions: Kau-Boy Backend Localization Plugin versions up to 1.6.1 Description: The issue affects the processing of the file backend localization.php, leading to cross-site scripting. The attack can be initiated remotely. Recommendations: For versions ...

PT-2023-10280 · WordPress · Google Analytics Top Content Widget Plugin

Name of the Vulnerable Software and Affected Versions: Google Analytics Top Content Widget Plugin versions up to 1.5.6 Description: A vulnerability was found in the Google Analytics Top Content Widget Plugin, affecting an unknown functionality of the file class-tgm-plugin-activation.php. The...

PT-2023-2605 · NetGear · Netgear Srx5308

Name of the Vulnerable Software and Affected Versions: Netgear SRX5308 versions up to 4.3.5-3 Description: A vulnerability was found in the Web Management Interface of Netgear SRX5308, due to insufficient input validation. This allows a remote attacker to conduct a cross-site scripting attack by...

PT-2023-17254 · Sourcecodester · Sourcecodester Employee Payslip Generator

Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Payslip Generator version 1.0 Description: A problematic vulnerability has been found in the Create News Handler component of the SourceCodester Employee Payslip Generator. The issue is related to an unknown function o...

CVE-2023-1635

A vulnerability was found in OTCMS 6.72. It has been declared as problematic. Affected by this vulnerability is the function AutoRun of the file apiRun.php. The manipulation of the argument mode leads to cross site scripting. The attack can be launched remotely. The identifier VDB-224017 was...