5 matches found
EUVD-2023-34527
Malicious code in bioql PyPI...
Cross site scripting
A stored cross-site scripting XSS vulnerability in TotalJS messenger commit b6cf1c9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the user information field...
TotalJS messenger 跨站脚本漏洞
TotalJS messenger is a Node.js open source Slack alternative to the Total.js Platform open source. A cross-site scripting vulnerability exists in TotalJS Messenger version b6cf1c9, which can be exploited by an attacker to execute arbitrary web script or HTML via a crafted payload injected into a...
The vulnerability of the cups printing server of the Astra Linux operating system allows a hacker to gain access to confidential data.
The vulnerability of the cups printing server of the Astra Linux operating system relates to the printing of GECOS field contents instead of the user’s domain login information. Exploiting this vulnerability can allow an attacker to gain access to confidential data...
Mozilla: URL spoofing in addressbar during page loads (MFSA 2013-04)
Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allow remote attackers to spoof the address bar via vectors involving authentication information in...