16 matches found
EUVD-2023-30859
Malicious code in bioql PyPI...
EUVD-2023-30858
Malicious code in bioql PyPI...
CVE-2023-27069
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the account name field...
CVE-2023-27070
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the platform name field...
CVE-2023-27069
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the account name field...
CVE-2023-27070
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the platform name field...
CVE-2023-27069
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the account name field...
CVE-2023-27069
TotalJS OpenPlatform (commit b80b09d) is affected by a stored XSS vulnerability in the account name field. The issue allows an attacker to inject crafted payloads to execute arbitrary web scripts/HTML on the victim’s browser. Reported across multiple sources (NVD, Red Hat, CNNVD, PRION, etc.), th...
TotalJS OpenPlatform 跨站脚本漏洞
TotalJS OpenPlatform is a simple enterprise-ready platform for TotalJS individual developers. It is used to run, integrate and manage multiple web applications. A security vulnerability exists in version b80b09d of TotalJS OpenPlatform, which stems from the presence of a stored cross-site scripti...
PT-2023-20931 · Unknown · Totaljs Openplatform
Name of the Vulnerable Software and Affected Versions: TotalJS OpenPlatform version b80b09d Description: A stored cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the account name field. This enables the execution of...
CVE-2023-27069
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the account name field...
CVE-2023-27070
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the platform name field...
PT-2023-20933 · Unknown · Totaljs Openplatform
Name of the Vulnerable Software and Affected Versions: TotalJS OpenPlatform version b80b09d Description: A stored cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the platform name field. Recommendations: For version...
CVE-2023-27070
TotalJS OpenPlatform is affected by a stored XSS in the platform name field introduced by commit b80b09d. Affected component: platform name input handling in OpenPlatform. Impact: attacker could execute arbitrary web scripts/HTML in the user’s browser. Exploit details are not described in these d...
CVE-2023-27069
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the account name field...
CVE-2023-27070
A stored cross-site scripting XSS vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the platform name field...