PT-2026-22994

Name of the Vulnerable Software and Affected Versions Idno versions prior to 1.6.4 Description Idno, a social publishing platform, contains a remote code execution vulnerability that can be triggered through a chained sequence of issues. Specifically, a web application administrator can be...

PT-2025-31940 · Thinkphp3 · Thinkphp3

Name of the Vulnerable Software and Affected Versions: thinkphp3 version 3.2.5 Description: An issue in thinkphp3 allows a remote attacker to execute arbitrary code via the index.php component. This can be achieved through crafted template inclusion, requiring no login. Recommendations: Block...

H-Sphere 2.x HTML Template Inclusion Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/7855/info H-Sphere is prone to multiple cross-site scripting vulnerabilities via the HTML template feature in the Hosting Control Panel. HTML and script code will not be filtered from pages which are generated when a...

PSOFT H-Sphere Cross Site Scripting Vulnerabilities

-------------------- Product: PSOFT H-Sphere Hosting Control Panel Vendor: PSOFT Positive Software Corporation Versions: VULNERABLE - 2.3.x - 2.2.x - 2.1.x - 2.0.x NOT VULNERABLE - ? --------------------- Description: H-Sphere is a scalable multiserver webhosting control panel, which provides...

H-Sphere 2.x - HTML Template Inclusion Cross-Site Scripting

source: https://www.securityfocus.com/bid/7855/info H-Sphere is prone to multiple cross-site scripting vulnerabilities via the HTML template feature in the Hosting Control Panel. HTML and script code will not be filtered from pages which are generated when a request for an invalid or unknown...