Security Vulnerabilities fixed in Thunderbird 140 — Mozilla

A use-after-free in FontFaceSet resulted in a potentially exploitable crash. An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser, and persisted between containers and normal/private browsing mode, but not profiles. Th...

CVE-2023-32750

Pydio Cells through 4.1.2 allows SSRF. For longer running processes, Pydio Cells allows for the creation of jobs, which are run in the background. The job "remote-download" can be used to cause the backend to send a HTTP GET request to a specified URL and save the response to a new file. The...

CVE-2022-30464

ChatBot App with Suggestion in PHP/OOP v1.0 is vulnerable to Cross Site Scripting XSS via /simplechatbot/classes/Master.php?f=saveresponse...

CVE-2022-30464

ChatBot App with Suggestion in PHP/OOP v1.0 is vulnerable to Cross Site Scripting XSS via /simplechatbot/classes/Master.php?f=saveresponse...

PT-2022-20131 · Unknown · Chatbot App With Suggestion In Php/Oop

Name of the Vulnerable Software and Affected Versions: ChatBot App with Suggestion in PHP/OOP version 1.0 Description: The issue is related to Cross Site Scripting XSS via the /simple chat bot/classes/Master.php?f=save response API endpoint. This allows for potential malicious script injection. N...

ChatBot Application with a Suggestion Feature 跨站脚本漏洞

ChatBot Application with a Suggestion Feature is a ChatBot application with a suggestion feature by Carlo Montero Personal Developer. A security vulnerability exists in ChatBot Application with a Suggestion Feature version 1.0, which stems from a cross-site scripting XSS attack in...