154 matches found
PHPGurukul Hospital Management System Cross-Site Scripting Vulnerability
PHPGurukul Hospital Management System is a web application for hospitals to manage doctors and patients. A persistent cross-site scripting vulnerability exists in \hms\admin\appointment-history.php in PHPGurukul Hospital Management System version 4.0. A remote attacker can exploit this...
CVE-2020-22167
PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...
Cross site scripting
PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...
CVE-2020-22167
PHPGurukul Hospital Management System v4.0 contains a persistent cross-site scripting (XSS) vulnerability in hms/admin/appointment-history.php. The issue allows remote registered users to exploit the page to obtain user cookie data, indicating an information disclosure risk via stored or reflecte...
CVE-2020-22167
PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...
XSS Vulnerability in Reporter by Skyrise Technology Group
Skyrise Technology Group Skyrise, founded in 1995, is a leading provider of network security, big data and cloud services in China. An XSS vulnerability exists in Tianrongxin Technology Group Reporter, which can be exploited by attackers to obtain user cookie information...
XSS Vulnerability in Built-in Reports of Renton Network Security Management System
Renzi Network Technology Co., Ltd. was founded in May 2000, and its business covers network security, information security, public security, network resource security, industrial internet security and many other fields, etc. etc. An XSS vulnerability exists in the built-in reports of the Renzi...
Stored XSS Vulnerability in Swift Flowcharts
Swift Flowchart Maker is a compact and feature-rich flowchart drawing tool. Swift Flowchart has a stored XSS vulnerability that can be exploited by an attacker to obtain user cookie information...
Language Sparrow is vulnerable to XSS
Language Sparrow is a specialized cloud-based knowledge base. Language Sparrow has an XSS vulnerability that can be exploited by an attacker to obtain user cookie information...
Stored XSS Vulnerability in E-ZKEco pro Time & Security Granular Management Platform
hereinafter referred to as: Entropy Base Technology is a world-renowned enterprise with biometrics as its core technology, and is committed to the empowerment of biometrics core technology and the empowerment of intelligent entrance/exit software platforms for people, vehicles, and things, etc. T...
XSS Vulnerability in Station Helpers CMS
Station Helpers CMS is a CMS open source system dedicated to creating a full-featured ... Station Helpers CMS has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...
XSS Vulnerability in Cloud Collection Reviews
Cloud collection allows users to online anytime, anywhere collection of a website, the site can view the content of other people's public collection and comment. The project is developed using SpringBoot2.0 MySQL and other technologies. Cloud collection of comments there is an XSS vulnerability ,...
Learnsite Remote Elevation of Privilege Vulnerability
Learnsite is an information technology classroom learning platform. A remote elevation of privilege vulnerability exists in the JudgIsAdmin function in /Manager/index.aspx in Learnsite version 1.2.5.0. An attacker can exploit this vulnerability by modifying the first letter of the user cookie key...
Privilege escalation
Learnsite 1.2.5.0 contains a remote privilege escalation vulnerability in /Manager/index.aspx through the JudgIsAdmin function. By modifying the initial letter of the key of a user cookie, the key of the administrator cookie can be obtained...
XSS Vulnerability in KindEditor Editor
KindEditor is a powerful free HTML editor. KindEditor editor has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...
XSS Vulnerability in Heybbs Frontend
HEYBBS Micro Community is a bootstrap+php+mysqli based development program. Heybbs frontend has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...
XSS Vulnerability in JPress v3.3.0
JPress is a WordPress-like product developed in Java. JPress v3.3.0 suffers from an XSS vulnerability that can be exploited by attackers to obtain user cookie information...
Budget Management System 1.0 - (Budget title) Stored XSS Vulnerability
Exploit Title: Budget Management System 1.0 - 'Budget title' Stored XSS Exploit Author: Jitendra Kumar Tripathi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/14403/budget-management-system.html Version: 1 Tested on Windows 10 + Xampp 8.0.3 XSS...
XSS Vulnerability in Huaxia ERP
Huaxia ERP based on SpringBoot framework, SaaS model, determined to provide open source for small and medium-sized ERP software, currently focusing on sales and inventory financial functions. Huaxia ERP system there is an XSS vulnerability , an attacker can use this vulnerability to obtain user...
IBOS Enterprise Collaboration Management Software Business Edition Has XSS Vulnerabilities
IBOS Enterprise Collaboration Management Software is an open source office OA system developed by Shenzhen BOS Xiechuang Network Technology Co. IBOS enterprise collaborative management software commercial version of the XSS vulnerability, attackers can use the vulnerability to obtain user cookie...