Cross site scripting

TwoNav v2.0.28-20230624 is vulnerable to Cross Site Scripting XSS...

TwoNav 跨站脚本漏洞

TwoNav is an open source and free bookmark navigation management program by tznb1 open source. A cross-site scripting vulnerability exists in TwoNav version v2.0.28-20230624, which stems from a default setting that allows free registration, resulting in stored XSS...

CVE-2023-37657

TwoNav v2.0.28-20230624 is vulnerable to Cross Site Scripting (XSS) as CVE-2023-37657. The connected sources confirm the product/version affected and the XSS class, but do not provide a technical root cause or specific vulnerable component. No patch/version with fix is disclosed in the supplied d...

Siemens SIMATIC CP 1543-1 Improper Privilege Management (CVE-2016-8561)

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Users with elevated privileges to TIA-Portal and project data on the engineering station could possibly get privileged access on affected devices. This plugin only works with...