CVE-2025-55289

Chamilo is a learning management system. Prior to version 1.11.34, there is a stored XSS vulnerability in Chamilo LMS Verison 1.11.32 allows an attacker to inject arbitrary JavaScript into the platform’s social network and internal messaging features. When viewed by an authenticated user includin...

Memos 安全漏洞

Memos is a Memos open source open source hosted meme center with knowledge management and social features. A security vulnerability exists in Memos version v0.25.2, which stems from improper access control of the Identity Provider service and could lead to account takeover or denial of service...

Memos 安全漏洞

Memos is a Memos open source open source hosted meme center with knowledge management and social features. A security vulnerability exists in Memos version 0.23.0 that stems from insufficient user-supplied URL validation, which could lead to an SSRF attack...

memos Security Vulnerabilities

memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos versions prior to 0.13.2, which stems from incorrect privilege management...

memos 跨站脚本漏洞

memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos that stems from insufficient inspection of external resources. An attacker could exploit the vulnerability to perform a cross-site scripting attack...

memos 安全漏洞

memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos versions prior to 0.9.1, which stems from insufficient privileges or improper handling of privileges...

memos 安全漏洞

memos is an open source hosted meme center with knowledge management and social features. A security vulnerability exists in memos, which can be exploited by an attacker to post messages in the memos page...

memos 跨站请求伪造漏洞

memos is an open source hosted meme center with knowledge management and social features. memos suffers from a cross-site request forgery vulnerability, which can be exploited by attackers to post on behalf of victims...

memos 安全漏洞

memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos, which can be exploited by an attacker to change a user's language preference...

memos 安全漏洞

memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos, which can be exploited by an attacker to add shortcuts to a victim's account...

memos 跨站脚本漏洞

memos is an open source hosted memo center with knowledge management and social features. A cross-site scripting vulnerability exists in memos, which can be exploited by an attacker to be able to steal a user's cookie...

memos 安全漏洞

memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos versions prior to 0.9.0, which stems from incorrect use of privileged APIs...

memos 授权问题漏洞

memos is an open source hosted memo center with knowledge management and social features. An authorization issue vulnerability exists in versions of memos prior to 0.9.0 that stems from incorrect authentication...

Security Bulletin: HTML injection vulnerability in IBM Business Process Manager (BPM) - CVE-2017-1424

Summary IBM BPM allows users to interact with one another without fully removing HTML markup. This might allow controlling parts of the user interface, possibly script injection. Vulnerability Details CVEID: CVE-2017-1424 DESCRIPTION: IBM Business Process Manager is vulnerable to cross-site...