EUVD-2024-32336

Malicious code in bioql PyPI...

CVE-2024-12841 Emlog Pro tag.php cross site scripting

A vulnerability was found in Emlog Pro up to 2.4.1. It has been classified as problematic. This affects an unknown part of the file /admin/tag.php. The manipulation of the argument keyword leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclose...

CVE-2024-12841 Emlog Pro tag.php cross site scripting

A vulnerability was found in Emlog Pro up to 2.4.1. It has been classified as problematic. This affects an unknown part of the file /admin/tag.php. The manipulation of the argument keyword leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclose...

PT-2024-17760 · Emlog Pro · Emlog Pro

Name of the Vulnerable Software and Affected Versions: Emlog Pro versions up to 2.4.1 Description: A problem has been found in Emlog Pro that affects an unknown part of the file /admin/tag.php. The manipulation of the keyword argument leads to cross site scripting. It is possible to initiate the...

CVE-2024-9788

A vulnerability has been found in LyLmespage 1.9.5 and classified as critical. This vulnerability affects unknown code of the file /admin/tag.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...

CVE-2024-9788 LyLme_spage tag.php sql injection

A vulnerability has been found in LyLmespage 1.9.5 and classified as critical. This vulnerability affects unknown code of the file /admin/tag.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may...

CVE-2024-3763 Emlog Pro Post Tag tag.php cross site scripting

A vulnerability was found in Emlog Pro 2.2.10. It has been rated as problematic. This issue affects some unknown processing of the file /admin/tag.php of the component Post Tag Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

CVE-2009-10003

A vulnerability was found in capnsquarepants wordcraft up to 0.6. It has been classified as problematic. Affected is an unknown function of the file tag.php. The manipulation of the argument tag leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 0.7 ...

CVE-2009-10003

Capnsquarepants Wordcraft

SQL Injection in ampache/ampache

Description The application does not validate and escape the type parameter before using it in a SQL statement in Model/Tag.php, leading to a SQL Injection Proof of Concept Time delay: GET /browse.php?action=tag&type=0%27orifnow=sysdate,sleep3,0or%27 HTTP/1.1 Host: demo.ampache.dev sec-ch-ua:...

armbets.tv XSS vulnerability

Vulnerable URL: http://www.armbets.tv/main-tag.php?tag=3=%22%3E%3Cscript%3Ealert%28%27OPENBUGBOUNTY%27%29%3C/script%3E=1 Details: Description| Value ---|--- Patched:| Yes, at 05.10.2016 Latest check for patch:| 05.10.2016 19:16 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclose...

thejokes.ru XSS vulnerability

Vulnerable URL: http://thejokes.ru/tag.php?tag= Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 23:01 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6901113 VIP website status:| No Check thejokes.ru SSL...

quizzes.cc XSS vulnerability

Vulnerable URL: http://quizzes.cc/tags.php?tag=Countries" Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 11:52 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 575630 VIP website status:| No Check quizzes.cc S...

dedecms v5.1 /tag.php SQL注入漏洞

No description provided by source...

MyBB MyBBlog 1.0 Cross Site Scripting

Title : MyBB MyBBlog 1.0 Plugin Cross Site Scripting Author : DevilScreaM Date : 24 October 2014 Category : Web Applications Vendor : https://github.com/JN-Jones/MyBBlog Download : http://community.mybb.com/mods.php?action=view&pid=221 Version : 1.0 Greetz : newbie-security.or.id | Borneo Securit...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in OXID eShop Professional and Community Edition 4.6.8 and earlier, 4.7.x before 4.7.11, and 4.8.x before 4.8.4, and Enterprise Edition 4.6.8 and earlier, 5.0.x before 5.0.11 and 5.1.x before 5.1.4 allow remote attackers to inject arbitrary web...

Bo-Blog tag.php跨站漏洞

tag.php中的mode变量过滤不严，导致xss存在 攻击者可窃取用户cookie或者构造CSRF。 0 Bo-Blog 2.1.1 inc/modtag.php里的第61行 acceptrequest'mode'; 之后，加上 $mode = intval$mode;...

Analysis of LxBlog V6 variable is not initialized vulnerability-vulnerability warning-the black bar safety net

Flyh4t http://bbs.wolvez.org This article has been published in the hacker line of Defense,reproduced please signature Lxblog is PHPWind development of a based on PHP+MySQL database platform architecture a multi-user blog system, the emphasis of the whole Station and the user inter-individual...

DedeCms V5.1 tag.php注入漏洞

Dedecms算是使用比较广泛的PHP整站系统了，在被使用的同时系统的安全性也被人们关注 目录下的tag.php文件对变量$tag处理不当，导致注入漏洞的形成 因为可以使用“'”,所以如果条件可以的话可以直接into file得SHELL。 DedeCms V5.1 sp1 暂无 www.dedecms.com http://www.sebug.net/bbs/thread-332-1-1.html...

[eVuln] CJ Tag Board XSS Vulnerability

New eVuln Advisory: CJ Tag Board XSS Vulnerability http://evuln.com/vulns/137/summary.html --------------------Summary---------------- eVuln ID: EV0137 Vendor: CloudNine Interactive Vendor's Web Site: http://www.cloudnineinteractive.co.uk/ Software: Tag Board Sowtware's Web Site:...