EUVD-2024-43571

Malicious code in bioql PyPI...

PT-2025-5686 · Sensaphone · Sensaphone Web600

Name of the Vulnerable Software and Affected Versions: Sensaphone Web600 affected versions not specified Description: The issue concerns stored cross-site scripting XSS in the system's Setup, Profile, and Zone options. This means that an attacker could potentially inject malicious code into these...

LAOBANCMS cross-site scripting vulnerability (CNVD-2021-34495)

LAOBANCMS is a content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in LAOBANCMS version 2.0. An attacker can execute arbitrary code by injecting commands into the "Website SEO Keywords" field on the "admin/info.php?shuyu" page...

fipsCMS.txt

fipsCMS lights is a freeware product of fipsasp.com. If you log on as admin, you can generate new pages in the CMS system. If you inject the "headline" field with scriptingcode like alert‘code executed’, this will automaticly launch when a users visits that site. Please credit to: Preben Nyløkken...

CVE-2004-1911

CVE-2004-1911 concerns an XSS vulnerability in AzDGDatingLite 2.1.1. The issue allows remote attackers to inject arbitrary web script or HTML via (1) l parameter (language) to index.php or (2) id parameter to view.php. The NVD entry cites a base score of 4.3 (Medium) with network attack vector, n...

: Multiples vulnerabilities in ICQ Toolbar 1.3 for Internet Explorer

Advisory ID Internal CORE-2006-0322 Advisory Information Advisory ID : CORE-2006-0322 Bugtraq ID : 19900 CVE Name : CVE-2006-4660 / CVE-2006-4661 Title : Multiples vulnerabilities in ICQ Toolbar 1.3 for Internet Explorer Class : Access Validation Error/Design Error, Input validation error Remotel...