CVE-2023-47115

Label Studio is an a popular open source data labeling tool. Versions prior to 1.9.2 have a cross-site scripting XSS vulnerability that could be exploited when an authenticated user uploads a crafted image file for their avatar that gets rendered as a HTML file on the website. Executing arbitrary...

Cross site scripting

Label Studio is an a popular open source data labeling tool. Versions prior to 1.9.2 have a cross-site scripting XSS vulnerability that could be exploited when an authenticated user uploads a crafted image file for their avatar that gets rendered as a HTML file on the website. Executing arbitrary...

CVE-2006-6363

Cross-site scripting XSS vulnerability in admin.pl in BlueSocket Secure Controller BSC before 5.2, or without 5.1.1-BluePatch, allows remote attackers to inject arbitrary web script or HTML via the adname parameter...

CVE-2006-6363

CVE-2006-6363 describes a Cross-site scripting (XSS) vulnerability in admin.pl of BlueSocket Secure Controller (BSC) prior to version 5.2, or without the 5.1.1-BluePatch. An attacker can inject arbitrary web script or HTML via the ad_name parameter. The CVSS data indicates a network-accessible, l...