Cross site scripting

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the Mechanic List Section in login panel...

Cross site scripting

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the Category List Section in login panel...

Cross site scripting

A Stored Cross Site Scripting XSS vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the User List Section in login panel...

Cross site scripting

A Stored Cross Site Scripting XSS vulnerability exists in bludit 3.13.1 via the TAGS section in login panel...

Cross site scripting

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the Service Requests Section in login panel...

Cross site scripting

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the Service List Section in login panel...

CVE-2021-46068

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the My Account Section in login panel...

CVE-2021-46069

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the Mechanic List Section in login panel...

CVE-2021-46071

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the Category List Section in login panel...

CVE-2021-46072

A Stored Cross Site Scripting XSS vulnerability exists in Vehicle Service Management System 1.0 via the Service List Section in login panel...

CVE-2021-46073

A Stored Cross Site Scripting XSS vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the User List Section in login panel...

PT-2022-9493 · WordPress · Stars Rating Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: The Stars Rating WordPress plugin versions prior to 3.5.1 Description: The issue allows submission of a long integer, causing a Denial of Service in the comments section or pending comment dashboard, depending on whether the user sent it as...

CVE-2021-25989 ifme - Stored Cross-Site Scripting (XSS) in Groups section

In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability in the markdown editor. It can be exploited by making a victim a Leader of a group which triggers the payload for them...

CVE-2021-25988 ifme - Stored Cross-Site Scripting (XSS) in Notifications section

In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability notifications section which can be directly triggered by sending an ally request to the admin...

Cross-site Scripting (XSS) - Stored in friends-of-forkcms/fork-cms-module-commerce

Description In the admin section in Commerce - Shop settings - Stock statuses - Edit stock statuses one can add XSS payloads. After adding XSS payloads when a user is visiting Commerce - Shop settings - Stock statuses the JavaScript code will be run. Proof of Concept Go to Commerce - Shop setting...

Critical: Red Hat Security Advisory: OpenShift Container Platform 4.7.40 security update

Red Hat OpenShift Container Platform release 4.7.40 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which...

Critical: Red Hat Security Advisory: Red Hat AMQ Streams 1.8.4 release and security update

Red Hat AMQ Streams 1.8.4 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Moderate: Red Hat Security Advisory: Openshift Logging security and bug update (5.2.4)

An update is now available for OpenShift Logging 5.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in th...

KLA62329 ACE vulnerability in Microsoft Mariner

A spoofing vulnerability was found in Microsoft Mariner. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-43896 Related products CBL-Mariner-2.0 PowerShell CVE list CVE-2021-43896 warning Solution Install necessary updates from the KB section,...

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1 (etcd) security update

An update for etcd is now available for Red Hat OpenStack Platform 16.1 Train. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...