11 matches found
EUVD-2021-26527
Malware in sbrugna...
CVE-2021-3184
MISP 2.4.136 has XSS via a crafted URL to the app/View/Elements/globalmenu.ctp user homepage favourite button...
CVE-2024-48057
localai =2.20.1 is vulnerable to Cross Site Scripting XSS. When calling the delete model API and passing inappropriate parameters, it can cause a one-time storage XSS, which will trigger the payload when a user accesses the homepage...
Yzmcms 授权问题漏洞
Yzmcms is an open source CMS Content Management System for Yzmcms personal developers. v6.3 of Yzmcms contains an access control error vulnerability that stems from the application's lack of user login status authentication before accessing a personal homepage. An attacker could use this...
Design/Logic Flaw
MISP 2.4.136 has XSS via a crafted URL to the app/View/Elements/globalmenu.ctp user homepage favourite button...
CVE-2021-3184
MISP 2.4.136 has XSS via a crafted URL to the app/View/Elements/globalmenu.ctp user homepage favourite button...
Ben Chivers Easy Homepage Creator 1.0 File Modification Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5340/info The vulnerability has been reported for Easy Homepage Creator. It is possible for an atttacker to modify any user's home page. The vulnerability is the result of Homepage Creator failing to properly authenticate...
CVE-2009-2131
Cross-site scripting XSS vulnerability in 4images 1.7.7 and earlier allows remote authenticated users to inject arbitrary web script or HTML by providing a crafted userhomepage parameter to member.php, and then posting a comment associated with a picture...
Cross site scripting
Cross-site scripting XSS vulnerability in 4images 1.7.7 and earlier allows remote authenticated users to inject arbitrary web script or HTML by providing a crafted userhomepage parameter to member.php, and then posting a comment associated with a picture...
4images 1.7.7 Bypass / Cross Site Scripting
|| || | || o,7 || . o7 || q||| o\, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait, PEACE... =Vuln: 4images = 1.7.7 - filter bypass HTML injection/XSS =INFO: =BUY: =DORK: -=/:Conditions:=- --------------------------------------------------------------------------------- ; Magic quotes...
4images <= 1.7.7 Filter Bypass HTML Injection/XSS Vulnerability
Exploit for unknown platform in category web applications =============================================================== 4images = 1.7.7 Filter Bypass HTML Injection/XSS Vulnerability =============================================================== =By: Qabandi From Kuwait, PEACE... =Vuln: 4image...