6 matches found
CVE-2026-12789
A vulnerability was identified in ILIAS Learning Management System 11.0. This issue affects the function ilTrQuery::executeQueries of the file components/ILIAS/Tracking/classes/class.ilTrQuery.php of the component Learning Progress Tracking. Such manipulation of the argument trouptablenav leads t...
CVE-2022-25772
A cross-site scripting XSS vulnerability in the web tracking component of Mautic before 4.3.0 allows remote attackers to inject executable javascript...
PrestaShop SQL注入漏洞
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image zoom and other features. A security vulnerability exists in PrestaShop sendinblue v.4.0.15 and earlier versions, whic...
CVE-2022-44726
CVE-2022-44726 affects TouchDown Timesheet tracking component for Jira (version 4.1.4). The calendar view is vulnerable to stored XSS, enabling script execution in the context of affected pages. Public details in connected sources corroborate a calendar-view XSS risk; no concrete exploit details ...
CVE-2022-25772
A cross-site scripting XSS vulnerability in the web tracking component of Mautic before 4.3.0 allows remote attackers to inject executable javascript...
PT-2022-17503 · Mautic · Mautic
Name of the Vulnerable Software and Affected Versions: Mautic versions prior to 4.3.0 Description: A cross-site scripting XSS vulnerability in the web tracking component allows remote attackers to inject executable javascript. The issue arises because the output of tracking metadata is not...