7 matches found
EUVD-2004-1710
Malware in sbrugna...
EUVD-2023-59237
Malicious code in bioql PyPI...
EUVD-2024-53506
Malicious code in bioql PyPI...
CVE-2025-48992 Group-Office vulnerable to blind XSS
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.123 and 25.0.27, a stored and blind cross-site scripting XSS vulnerability exists in the Name Field of the user profile. A malicious attacker can change their name to a javascript payload, whi...
PScript PForum 1.24/1.25 - User Profile HTML Injection
source: https://www.securityfocus.com/bid/10954/info PScript PForum is reported prone to a HTML injection vulnerability. The vulnerability presents itself due to a lack of sufficient sanitization performed on data submitted through input fields of the PForum user profile form. This could be...
PScript PForum 1.241.25 - User Profile HTML Injection
PScript PForum 1.241.25 - User Profile HTML Injection source: https://www.securityfocus.com/bid/10954/info PScript PForum is reported prone to a HTML injection vulnerability. The vulnerability presents itself due to a lack of sufficient sanitization performed on data submitted through input field...
XMB Forum 1.6 - Magic Lantern Cross-Site Scripting
source: https://www.securityfocus.com/bid/4721/info XMB Forum 1.6 Magic Lantern is a web-based discussion forum. It is vulnerable to a number of cross-site scripting issues because of improper filtering of user input. 1. The first involves 'member.php'; submitting script to the variable 'member' ...