15 matches found
EUVD-2022-38513
Malicious code in bioql PyPI...
SolaX Cloud 安全漏洞
SolaX Cloud is a photovoltaic monitoring and management platform from SolaX China. A security vulnerability exists in SolaX Cloud, which stems from the username suggestion feature leaking sensitive information...
CVE-2022-36091 XWiki Platform Web Templates vulnerable to Missing Authorization and Exposure of Private Personal Information to an Unauthorized Actor
XWiki Platform Web Templates are templates for XWiki Platform, a generic wiki platform. Through the suggestion feature, string and list properties of objects the user shouldn't have access to can be accessed in versions prior to 13.10.4 and 14.2. This includes private personal information like...
ChatBot App with Suggestion SQL注入漏洞
ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=user/manageuser&id=The page lacks validation for external input SQL...
ChatBot Application with a Suggestion Feature SQL Injection Vulnerability
ChatBot Application with a Suggestion FeatureA ChatBot application with a suggestion feature. chatBot Application with a Suggestion Feature v1.0 is vulnerable to a SQL injection vulnerability in /simple chatbot/classes/Master.php?f=deleteresponse, id is missing validation for external input SQL...
ChatBot Application with a Suggestion Feature SQL注入漏洞
ChatBot Application with a Suggestion Feature is a ChatBot application with a suggestion feature. chatBot Application with a Suggestion Feature version 1.0 is vulnerable to a SQL injection vulnerability that originates in /simple chatbot/admin/responses/viewresponse.php with an id parameter that...
ChatBot Application with a Suggestion Feature 跨站脚本漏洞
ChatBot Application with a Suggestion Feature is a ChatBot application with a suggestion feature by Carlo Montero Personal Developer. A security vulnerability exists in ChatBot Application with a Suggestion Feature version 1.0, which stems from a cross-site scripting XSS attack in...
CVE-2022-30518
ChatBot Application with a Suggestion Feature 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /simplechatbot/admin/responses/viewresponse.php...
CVE-2022-30518
ChatBot Application with a Suggestion Feature 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /simplechatbot/admin/responses/viewresponse.php...
ChatBot Application with a Suggestion FeatureSQL注入漏洞
ChatBot Application with a Suggestion Feature is a ChatBot application with a suggestion feature. chatBot Application with a Suggestion Feature version 1.0 is vulnerable to a SQL injection vulnerability that originates in /simple chatbot/admin/responses/viewresponse.php with an id parameter that...
ChatBot Application With A Suggestion Feature 1.0 SQL Injection Vulnerability
Exploit Title: ChatBot Application with a Suggestion Feature 1.0 - 'id' Blind SQL Injection Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15316/chatbot-app-suggestion-phpoop-free-source-code.html Version: 1.0 Tested...
ChatBot Application With A Suggestion Feature 1.0 SQL Injection
Exploit Title: ChatBot Application with a Suggestion Feature 1.0 - 'id' Blind SQL Injection Date: 05/05/2022 Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15316/chatbot-app-suggestion-phpoop-free-source-code.html...
Sphider query Parameter Cross-Site Scripting Vulnerability
Sphider is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Cross site scripting
Cross-site scripting XSS vulnerability in search.php in Sphider 1.3.4, when the search suggestion feature is enabled, allows remote attackers to inject arbitrary web script or HTML via the query parameter, a different vector than CVE-2006-2506...
sphider134-xss.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sphider Cross Site Scripting Vulnerability Original release date: 2008-04-29 Last revised: 2008-05-06 Latest version: http://users.own-hero.net/decoder/advisories/sphider134-xss.txt Source: Christian Holler Systems Affected: Sphider 1.3.4...