13 matches found
EUVD-2023-43727
Malicious code in bioql PyPI...
CVE-2024-6006
A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 4.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Summer Schedule Handler. The manipulation of the argument Schedule Name leads to cross site scripting. The attack may be launch...
CVE-2024-5851
A vulnerability classified as problematic has been found in playSMS up to 1.4.7. Affected is an unknown function of the file /index.php?app=main=featureschedule=list of the component SMS Schedule Handler. The manipulation of the argument name/message leads to basic cross site scripting. It is...
CVE-2023-3035
A vulnerability has been found in Guangdong Pythagorean OA Office System up to 4.50.31 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Schedule Handler. The manipulation of the argument description leads to cross site scripting. The attac...
CVE-2024-6006
A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 4.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Summer Schedule Handler. The manipulation of the argument Schedule Name leads to cross site scripting. The attack may be launch...
CVE-2024-6006
A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 4.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Summer Schedule Handler. The manipulation of the argument Schedule Name leads to cross site scripting. The attack may be launch...
CVE-2024-6006
CVE-2024-6006 affects ZKTeco ZKBio CVSecurity V5000 4.1.0, specifically the Summer Schedule Handler’s Schedule Name argument. Exploitation allows cross-site scripting and may be triggered remotely; the exploit has been disclosed. The vendor notes ZKBio Security V5000 was withdrawn and recommends ...
CVE-2024-5851
A vulnerability classified as problematic has been found in playSMS up to 1.4.7. Affected is an unknown function of the file /index.php?app=main&inc=featureschedule&op=list of the component SMS Schedule Handler. The manipulation of the argument name/message leads to basic cross site scripting. It...
CVE-2023-3035
A vulnerability has been found in Guangdong Pythagorean OA Office System up to 4.50.31 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Schedule Handler. The manipulation of the argument description leads to cross site scripting. The attac...
Cross site scripting
A vulnerability has been found in Guangdong Pythagorean OA Office System up to 4.50.31 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Schedule Handler. The manipulation of the argument description leads to cross site scripting. The attac...
CVE-2023-3035 Guangdong Pythagorean OA Office System Schedule cross site scripting
A vulnerability has been found in Guangdong Pythagorean OA Office System up to 4.50.31 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Schedule Handler. The manipulation of the argument description leads to cross site scripting. The attac...
Guangdong Pythagorean OA Office System 跨站脚本漏洞
Guangdong Pythagorean OA Office System Gougu OA is a practical enterprise office system open source China Gouguopen gouguopen. A cross-site scripting vulnerability exists in Guangdong Pythagorean OA Office System versions prior to 4.50.31. The vulnerability stems from an unknown function in the...
PT-2023-22646 · Unknown · Guangdong Pythagorean Oa Office System
Name of the Vulnerable Software and Affected Versions: Guangdong Pythagorean OA Office System versions up to 4.50.31 Description: A vulnerability has been found in the Schedule Handler component, where the manipulation of the description argument leads to cross-site scripting. This issue can be...