5 matches found
EUVD-2024-22635
Malicious code in bioql PyPI...
CVE-2024-25300
A cross-site scripting XSS vulnerability in Redaxo v5.15.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter in the Template section...
CVE-2024-25300
A cross-site scripting XSS vulnerability in Redaxo v5.15.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter in the Template section...
Redaxo Cross-Site Scripting Vulnerability
Redaxo is a content management system from Redaxo open source. A cross-site scripting vulnerability exists in Redaxo version v5.15.1 that originates from a payload that allows an attacker to execute arbitrary web script or HTML via a payload injected into the Name parameter of the Template sectio...
CVE-2024-25300
CVE-2024-25300 affects Redaxo v5.15.1, exposing an XSS in the Template section via the Name parameter. The root cause is unsanitized input in Name, allowing arbitrary web scripts/HTML execution. Impact is limited to the affected user/recipient interactions as described (no exploit details provide...