22 matches found
EUVD-2020-10074
Malware in sbrugna...
EUVD-2025-5582
Malicious code in bioql PyPI...
CVE-2020-18145
Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...
CVE-2024-53387
A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...
CVE-2024-53387
A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...
CVE-2024-53387
A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...
UMeditor 跨站脚本漏洞
UMeditor is a rich text editor from the Baidu FEX team. A security vulnerability exists in UMeditor version v1.2.3, which stems from DOM Clobbering and allows execution of arbitrary code via specially crafted HTML elements...
CVE-2024-53387
A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...
CVE-2024-53387
CVE-2024-53387 affects umeditor v1.2.3 and is described as a DOM Clobbering vulnerability that allows arbitrary code execution via a crafted HTML element. The root cause is a DOM clobber issue in the editor component; exploitation requires user interaction (per CVSS vector). Impact is high (C/H/I...
CVE-2024-53387
A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...
CVE-2024-41351
bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting XSS via Public/statics/umeditor123/php/getContent.php...
CVE-2024-41350
bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting XSS via Public/statics/umeditor123/php/imageUp.php...
bjyadmin 安全漏洞
bjyadmin is an integrated application based on ThinkPHP extensions by the individual developer baijunyao. A security vulnerability exists in bjyadmin version a560fd5, which stems from a cross-site scripting XSS vulnerability via Public/statics/umeditor123/php/getContent.php...
PT-2024-29369 · Bjyadmin · Bjyadmin
Name of the Vulnerable Software and Affected Versions: bjyadmin version a560fd5 Description: The issue is related to Cross Site Scripting XSS in the bjyadmin commit a560fd5. This vulnerability comes from the imageUp.php file located in the Public/statics/umeditor1 2 3/php directory...
Unspecified vulnerability in umeditor
UMeditor is an editor application. A security vulnerability exists in umeditor, which stems from a cross-site scripting XSS vulnerability in umeditor v1.2.3. An attacker can exploit the vulnerability to execute client-side code...
CVE-2020-18145
Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...
CVE-2020-18145
Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...
Cross site scripting
Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...
CVE-2020-18145
Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...
CVE-2020-18145
UMeditor 1.2.3 is affected by a Cross Site Scripting (XSS) vulnerability exploitable via /public/common/umeditor/php/getcontent.php. The issue originates from a flaw in how input is handled, enabling an attacker to inject and execute client-side code. Affected component/file: getcontent.php in um...