4 matches found
CVE-2026-56383
CVE-2026-56383 : Craft CMS contains a stored XSS in the editableTable.twig component via the Row Heading column type. The vulnerability arises from unsanitized input in row heading default values, enabling an attacker with an administrator account (when allowAdminChanges is enabled) to inject arb...
CVE-2025-9735
CVE-2025-9735 concerns O2OA up to version 10.0-410. The vulnerability arises from manipulation of arguments in the file /x_query_assemble_designer/jaxrs/table within the Personal Profile Page component, specifically description/applicationName/queryName, which triggers cross-site scripting. Explo...
QStar Archive Solutions Security Breach
QStar Archive Solutions is QStar's range of storage technologies for managing disk arrays, object storage, tape libraries, optical libraries, WORM and clouds private and hybrid. A security vulnerability exists in the QStar Archive Solutions RELEASE3-0 Build 7 release, which stems from a DOM-based...
CVE-2023-34601
Jeesite before commit 10742d3 was discovered to contain a SQL injection vulnerability via the component $businessTable at /act/ActDao.xml...