23 matches found
PT-2024-29364
Name of the Vulnerable Software and Affected Versions openflights version 5234b5b Description The issue is a Cross-Site Scripting XSS vulnerability. It occurs via the "php/submit.php" endpoint. Recommendations For version 5234b5b, as a temporary workaround, consider disabling access to the...
PT-2021-10508 · Baigo Cms · Baigo Cms
Name of the Vulnerable Software and Affected Versions: baigo CMS version 4.0-beta-1 Description: A cross-site scripting issue allows attackers to execute arbitrary web scripts or HTML via the post parameter to the "/public/console/profile/info-submit/" API endpoint. Recommendations: For baigo CMS...
SonarSource SonarQube Authentication Bypass Vulnerability
SonarSource SonarQube is an open source code quality management system from SonarSource Switzerland. An authentication bypass vulnerability exists in SonarQube version 8.4.2.36762, which allows an external attacker to implement authentication bypass via SonarScanner to create and overwrite public...