4 matches found
EUVD-2023-60221
WBCE CMS 1.6.1 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript by uploading crafted SVG files through the media manager. Attackers can upload SVG files containing script tags to the...
EUVD-2022-28569
Malicious code in bioql PyPI...
CVE-2024-46625
An authenticated arbitrary file upload vulnerability in the /documentCache/upload endpoint of InfoDom Performa 365 v4.0.1 allows attackers to execute arbitrary code via uploading a crafted SVG file...
Exploit for Cross-site Scripting in Helpsystems Cobalt_Strike
CVE-2022-39197-RCE First This project was modified from...