25 matches found
CVE-2025-61872
Mahara before 25.04.2 and 24.04.11 are vulnerable to displaying results that can trigger XSS via a malicious search query string. This occurs in the 'search site' feature when using the Elasticsearch7 search plugin. The Elasticsearch function does not properly sanitize input in the query paramete...
CVE-2025-61872
Mahara before 25.04.2 and 24.04.11 are vulnerable to displaying results that can trigger XSS via a malicious search query string. This occurs in the 'search site' feature when using the Elasticsearch7 search plugin. The Elasticsearch function does not properly sanitize input in the query paramete...
EUVD-2025-209573
Mahara before 25.04.2 and 24.04.11 are vulnerable to displaying results that can trigger XSS via a malicious search query string. This occurs in the 'search site' feature when using the Elasticsearch7 search plugin. The Elasticsearch function does not properly sanitize input in the query paramete...
PT-2026-34881
Mahara before 25.04.2 and 24.04.11 are vulnerable to displaying results that can trigger XSS via a malicious search query string. This occurs in the 'search site' feature when using the Elasticsearch7 search plugin. The Elasticsearch function does not properly sanitize input in the query paramete...
CVE-2025-61872
CVE-2025-61872 affects Mahara prior to 25.04.2 and 24.04.11. The issue occurs in the search site feature when using the Elasticsearch7 search plugin, where the Elasticsearch function does not properly sanitize input in the query parameter, potentially allowing a malicious search query to trigger ...
CVE-2025-61872
Mahara before 25.04.2 and 24.04.11 are vulnerable to displaying results that can trigger XSS via a malicious search query string. This occurs in the 'search site' feature when using the Elasticsearch7 search plugin. The Elasticsearch function does not properly sanitize input in the query paramete...
EUVD-2006-0251
Malware in sbrugna...
mardigras.org.au XSS vulnerability
Open Bug Bounty ID: OBB-657598 Description| Value ---|--- Affected Website:| mardigras.org.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
luxottica.com XSS vulnerability
Vulnerable URL: http://www.luxottica.com/en/search/site/"/alert/openbugbounty/...
sete.port.fr XSS vulnerability
Vulnerable URL: http://www.sete.port.fr/fr/search/site/%3Cscript%3Ealert'OPENBUGBOUNTY'%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2095777 VIP website status:| No...
clo-cartoon.fr XSS vulnerability
Vulnerable URL: http://www.clo-cartoon.fr//search/site/?q= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website status:| No...
annuaireweb62.fr XSS vulnerability
Vulnerable URL: http://www.annuaireweb62.fr//search/site/?q= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 1 VIP website status:| No...
elevagedupetitverger.com XSS vulnerability
Vulnerable URL: http://www.elevagedupetitverger.com//search/site/?q= Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 20:28 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google...
chien-admis.be XSS vulnerability
Vulnerable URL: http://www.chien-admis.be//search/site/?q= Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 20:16 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1405478 Google Pagerank| 4 VIP website status:| ...
saladeat.re XSS vulnerability
Vulnerable URL: http://www.saladeat.re//search/site/?q= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website status:| No Check...
CVE-2010-2154
Cross-site scripting XSS vulnerability in the Search Site in CMScout 2.09, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: some of these details are obtained from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in the Search Site in CMScout 2.09, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: some of these details are obtained from third party information...
CVE-2010-2154
CMScout is affected by a Cross-Site Scripting (XSS) vulnerability in the Search Site. The issue concerns the search parameter in CMScout 2.09 (and possibly other versions), where an attacker can inject arbitrary web script or HTML. The underlying cause is XSS in the search input, allowing remote ...
CVE-2010-2154
Cross-site scripting XSS vulnerability in the Search Site in CMScout 2.09, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in index.php in SimpCMS allows remote attackers to execute arbitrary SQL commands via the keyword parameter in a search site action...