EUVD-2017-6214

Malware in sbrugna...

PT-2023-20061 · Square Pig · Fusioninvoice

Name of the Vulnerable Software and Affected Versions: Square Pig FusionInvoice version 2023-1.0 Description: A Stored Cross Site Scripting XSS issue allows attackers to execute arbitrary code via the description or content fields in expenses, tasks, and customer details. This enables malicious...

Telaxus EPESI cross-site scripting vulnerability (CNVD-2017-32705)

Telaxus EPESI is a Polish company Telaxus open source customer relationship management system based on PHP/Ajax framework CRM. The system provides schedule management , multi-user address book , proxy matters and other functions . A cross-site scripting vulnerability exists in the 'Tasks...

CVE-2017-14717

In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Description parameter...

CVE-2017-14717

This CVE concerns EPESI 1.8.2 rev20170830 with a Stored XSS vulnerability in the Tasks Description field. The issue originates from user-controllable content stored in a task description, enabling script execution when viewed. Public references (e.g., Exploit-DB, 0day, and OpenVAS entries) corrob...