EUVD-2024-16806

Malicious code in bioql PyPI...

Cross site scripting

A vulnerability was found in Cogites eReserv 7.7.58. It has been classified as problematic. This affects an unknown part of the file /front/admin/tenancyDetail.php. The manipulation of the argument id leads to cross site scripting. It is possible to initiate the attack remotely. The associated...

CVE-2024-1029

A vulnerability was found in Cogites eReserv 7.7.58 and classified as problematic. Affected by this issue is some unknown functionality of the file /front/admin/tenancyDetail.php. The manipulation of the argument Nom with the input Dreux"alert'XSS' leads to cross site scripting. The attack may be...

CVE-2024-1029

CVE-2024-1029 affects Cogites eReserv 7.7.58. The vulnerability lies in the web URI parameter Nom within /front/admin/tenancyDetail.php , where crafted input such as Dreux"> can trigger a cross-site scripting condition. Exploitation is described as remote, and the exploit has been publicly dis...

PT-2024-16162 · Unknown · Cogites Ereserv

Name of the Vulnerable Software and Affected Versions: Cogites eReserv version 7.7.58 Description: A cross-site scripting issue was found in some unknown functionality of the file /front/admin/tenancyDetail.php. The manipulation of the argument Nom with the input Dreux"alert'XSS' leads to...