5 matches found
EUVD-2010-4846
Malware in sbrugna...
PT-2024-27805 · Usvn · Usvn
Name of the Vulnerable Software and Affected Versions: User-friendly SVN USVN versions prior to 1.0.12 Description: The issue is related to improper input validation in the /admin/config/save endpoint, allowing administrators to execute arbitrary code via the fields siteTitle, siteIco, and...
CVE-2024-37879
CVE-2024-37879 affects User-friendly SVN (USVN) prior to v1.0.12. The issue is due to improper input validation in the /admin/config/save endpoint, allowing an administrator to execute arbitrary code via the fields: siteTitle, siteIco, and siteLogo. Impact is described as arbitrary code execution...
XSS vulnerability in invite-users-panel.vm [$i18n.getText('easyuser.send.invitations.email.placeholder', [$siteTitle]), line 37]
Panopticon http://panopticon.dyn.syd.atlassian.com/ has detected that the following file contains a XSS vulnerability. This vulnerability has been manually confirmed. File: confluence-plugins/confluence-bundled-plugins/confluence-easyuser-admin/src/main/resources/templates/invite-users-panel.vm...
CVE-2010-4882
Cross-site scripting XSS vulnerability in autocms.php in Auto CMS 1.6 allows remote attackers to inject arbitrary web script or HTML via the sitetitle parameter...