Lvzhou CMS 安全漏洞

Lvzhou CMS Oasis CMS is a content management system by wanliofficial individual developer. A security vulnerability exists in Lvzhou CMS Oasis CMS, which stems from the unfiltered direct splicing of SQL queries in the title parameter of the ContentService, which may lead to SQL injection attacks...

CVE-2025-52037

A vulnerability has been found in NotesCMS and classified as medium. Affected by this vulnerability is the page /index.php?route=sites. The manipulation of the title of the service descriptions leads to a stored XSS vulnerability. The issue was confirmed to be present in the source code as of...

CVE-2021-33500

PuTTY before 0.75 on Windows allows remote servers to cause a denial of service Windows GUI hang by telling the PuTTY window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. NOTE: the same attack methodology may affect some OS-level GUIs ...

PT-2023-16789 · WordPress · Bookly

Name of the Vulnerable Software and Affected Versions: Bookly plugin for WordPress versions up to, and including, 21.5 Description: The issue is related to Stored Cross-Site Scripting via service titles due to insufficient input sanitization and output escaping. This allows authenticated attacker...