5 matches found
CVE-2025-32389 NamelessMC Vulnerable to SQL Injections in /user/messaging and /panel/users/reports Pages
NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Prior to version 2.1.4, NamelessMC is vulnerable to SQL injection by providing an unexpected square bracket GET parameter syntax. Square bracket GET parameter syntax refers to the structure...
Multiple Storage-based Cross-site Scripting Vulnerabilities in Shenzhen Yifa Everlasting Yifa Cloud OA System
Yifa cloud OA office software integrates the most advanced management ideas, standardized management and value-added utilization of workflow, information flow and knowledge management to provide users with an advanced and efficient information work platform. The system is completely designed with...
[SECURITY] Fedora 21 Update: dbus-1.8.16-1.fc21
D-BUS is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility...
Mozilla Firefox PKCS11 Module Installation Code Execution (CVE-2009-3076)
Mozilla Firefox is a web browser developed by Mozilla Foundation. The browser is capable of interpreting and rendering many types of content published on the Internet, including various versions of HTML, XML, XUL, JavaScript, various graphics formats, and so on. The browser runs on the Windows,...
Unfixed XSS vulnerability at www.rentmore.us
Security researcher Uber0n, has submitted on 19/07/2008 a cross-site-scripting XSS vulnerability affecting www.rentmore.us, which at the time of submission ranked 4742346 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/06/2009. It is current...