ShinHer StudyOnline System 跨站脚本漏洞

ShinHer StudyOnline System is a school administration system from ShinHer, a Chinese company. special characters in the title parameter. An attacker could use this vulnerability to inject JavaScript and execute a stored XSS attack after logging in with user privileges...

CVE-2019-12843

CVE-2019-12843 is a stored JavaScript injection vulnerability in JetBrains TeamCity that requires deliberate server administrator action to trigger. The issue was fixed in TeamCity 2018.2.3. Connected sources confirm the vulnerability and the remediation, but do not provide additional exploit det...