CVE-2026-41067 Astro: XSS via incomplete `</script>` sanitization in `define:vars` allows case-insensitive and whitespace-based bypass

Astro is a web framework. Prior to 6.1.6, the defineScriptVars function in Astro's server-side rendering pipeline uses a case-sensitive regex //g to sanitize values injected into inline tags via the define:vars directive. HTML parsers close elements case-insensitively and also accept whitespace o...

Astro: XSS in define:vars via incomplete </script> tag sanitization

Summary The defineScriptVars function in Astro's server-side rendering pipeline uses a case-sensitive regex //g to sanitize values injected into inline tags via the define:vars directive. HTML parsers close elements case-insensitively and also accept whitespace or / before the closing , allowing ...

PT-2025-30027 · Joomla +1 · Joomla! +1

Name of the Vulnerable Software and Affected Versions: RSBlog! versions 1.11.6 through 1.14.5 Description: A stored cross-site scripting XSS issue exists in the RSBlog! component for Joomla. The issue allows remote authenticated users to inject arbitrary web script or HTML code via the jformtags...

CVE-2024-25676

An issue was discovered in ViewerJS 0.5.8. A script from the component loads content via URL TAGs without properly sanitizing it. This leads to both open redirection and out-of-band resource loading...

Linux Distros Unpatched Vulnerability : CVE-2021-32719

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI vi...

Woltlab Burning Board 2.3.x Register.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21370/info Woltlab Burning Board is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...

openSUSE Security Update : dhcp (openSUSE-SU-2011:0320-1)

A rogue dhcp server could instruct clients to use a host name that contains shell meta characters. Since many scripts in the system do not expect unusal characters in the system's host name the dhcp client needs to sanitize the host name offered by the server CVE-2011-0997. %NASLMINLEVEL 70300 C...

Ubuntu 6.06 LTS : firefox vulnerabilities (USN-717-3)

Kojima Hajime discovered that Firefox did not properly handle an escaped null character. An attacker may be able to exploit this flaw to bypass script sanitization. CVE-2008-5510 Wladimir Palant discovered that Firefox did not restrict access to cookies in HTTP response headers. If a user were...

i-Gallery <= 3.4 XSS Vulnerability - Active Check

i-Gallery is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

SuSE 10 Security Update : dhcp (ZYPP Patch Number 7456)

A rogue DHCP server could instruct clients to use a host name that contains shell meta characters. Since many scripts in the system do not expect unusal characters in the system's host name the DHCP client needs to sanitize the host name offered by the server. CVE-2011-0997 %NASLMINLEVEL 70300 C...

InTerra Blog Machine 1.84 XSS Vulnerability

Exploit for php platform in category web applications Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior versions Vendor Notification: 31 March 2011 Vulnerability Type: Stored XSS Cross Site Scripting Risk...

PhotoSmash 1.0.1 Cross Site Scripting

Vulnerability ID: HTB22867 Reference: http://www.htbridge.ch/advisory/xssinphotosmashwordpressplugin.html Product: PhotoSmash wordpress plugin Vendor: Byron Bennett http://smashly.net/ Vulnerable Version: 1.0.1 Vendor Notification: 22 February 2011 Vulnerability Type: XSS Cross Site Scripting...

Podcast Generator 1.3 Local File Inclusion / Path Disclosure

======================================== Vulnerability ID: HTB22801 Reference: http://www.htbridge.ch/advisory/localfileinclusioninpodcastgenerator.html Product: Podcast Generator Vendor: Alberto Betella http://podcastgen.sourceforge.net/ Vulnerable Version: 1.3 Vendor Notification: 20 January 20...

Pivotx 2.2.0 Cross Site Scripting / Path Disclosure

================================== Vulnerability ID: HTB22788 Reference: http://www.htbridge.ch/advisory/xssinpivotx.html Product: Pivotx Vendor: Pivotx Team http://pivotx.net/ Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: XSS Cross Site Scripting Status:...

Inout Webmail Script - Persistent Cross-Site Scripting

Inout Webmail Script - Persistent Cross-Site Scripting Name :inoutwebmail Persistent Xss Vulnerability Date : Dec,20 2010 Vendor Url :http://www.inoutscripts.com/ Author : Sid3^effects aKa HaRi Big hugs : Th3 RDX,Hananbutt, special thanks to : r0073r inj3ct0r.com,L0rd...

Campsite 3.3.6 Cross Site Scripting

=============================================================== Vulnerability ID: HTB22494 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincampsite.html Product: Campsite Vendor: Sourcefabric o.p.s http://www.sourcefabric.org/ Vulnerable Version: 3.3.6 and Probably Prior Versions...

XSS vulnerability in SyndeoCMS

Vulnerability ID: HTB22491 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinsyndeocms.html Product: SyndeoCMS Vendor: The SyndeoCMS team http://www.syndeocms.org/ Vulnerable Version: 2.9.0 and Probably Prior Versions Vendor Notification: 12 July 2010 Vulnerability Type: Stored XSS Cro...

Scribe CMS Cross Site Scripting

Vulnerability ID: HTB22422 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinscribecms2.html Product: Scribe CMS Vendor: Sigmer Technologies Vulnerable Version: Current at 03.06.2010 and Probably Prior Versions Vendor Notification: 07 June 2010 Vulnerability Type: XSS Cross Site...

SuSE9 Security Update : Epiphany (YOU Patch Number 12326)

The Mozilla Browser received backports for security problems in 1.8.1.14. The following security issues were fixed : - Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin policy and execute arbitrary...

openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-383)

The Mozilla XULRunner 1.8.1 engine received backports for security problems in 1.9.0.5. The following security issues were fixed : MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used t...