EUVD-2004-2157

Malware in sbrugna...

CVE-2025-47784

Emlog is an open source website building system. Versions 2.5.13 and prior have a deserialization vulnerability. A user who creates a carefully crafted nickname can cause strreplace to replace the value of nameorig with empty, causing deserialization to fail and return false. Commit...

CVE-2025-47784 Emlog vulnerable to Deserialization of Untrusted Data

Emlog is an open source website building system. Versions 2.5.13 and prior have a deserialization vulnerability. A user who creates a carefully crafted nickname can cause strreplace to replace the value of nameorig with empty, causing deserialization to fail and return false. Commit...

CVE-2024-9279

A vulnerability, which was classified as problematic, was found in funnyzpc Mee-Admin up to 1.6. This affects an unknown part of the file /mee/index of the component User Center. The manipulation of the argument User Nickname leads to cross site scripting. It is possible to initiate the attack...

CVE-2024-9279

The CVE-2024-9279 entry affects funnyzpc Mee-Admin up to 1.6, with a cross-site scripting flaw in the User Center’s /mee/index caused by manipulating the User Nickname parameter. The vulnerability is exploitable remotely; the exploit has been disclosed publicly and vendor response is not document...

mee-admin 跨站脚本漏洞

mee-admin is an open source backend management system by funnyzpc individual developers. A cross-site scripting vulnerability exists in mee-admin versions prior to 1.6, which stems from the parameter User Nickname in the file /mee/index that can lead to cross-site scripting...

PT-2024-39537 · Unknown · Funnyzpc Mee-Admin

Name of the Vulnerable Software and Affected Versions: funnyzpc Mee-Admin versions up to 1.6 Description: A problematic issue was found in the User Center component, affecting an unknown part of the file /mee/index. The manipulation of the User Nickname argument leads to cross-site scripting. Thi...

engineercms 跨站脚本漏洞

engineercms is an open source engineer knowledge management system . Specifically for civil engineers to create a suitable web-based knowledge management system . It can be used to manage both individual project information , but also for managing project team information ; it can run on both...

CVE-2005-0131

The Quick Connection dialog in Konversation 0.15 inadvertently uses the user-provided password as the nickname instead of the user-provided nickname when connecting to the IRC server, which could leak the password to other users...

[Full-Disclosure] Multiple vulnerabilities in Konversation

On 18 and 19 Jan 2005 I Wouter Coekaerts discovered 3 security vulnerabilities in Konversation "A user-friendly IRC-client for KDE", http://konversation.berlios.de/. Affected are version 0.15, CVS until 18-19/01/2005, and some older versions too. They are fixed in 0.15.1. Problem 1. Quick Buttons...

CVE-2004-2165

Lords of the Realm III 1.01 and earlier, when in the lobby stage, allows remote attackers to cause a denial of service crash from unallocated memory write via a long user nickname...