CVE-2023-31699

ChurchCRM v4.5.4 is vulnerable to Reflected Cross-Site Scripting XSS via image file...

SAP Message Server Authorization Issues Vulnerability

SAP Message Server is a message server application from SAP Germany. SAP Message Server is vulnerable to authorization issues, no details of the vulnerability are provided at this time...

CVE-2023-31699

ChurchCRM v4.5.4 is vulnerable to Reflected Cross-Site Scripting XSS via image file...

Cross site scripting

ChurchCRM v4.5.4 is vulnerable to Reflected Cross-Site Scripting XSS via image file...

CVE-2023-31699

ChurchCRM v4.5.4 is affected by a Reflected Cross-Site Scripting (XSS) via image file. According to multiple sources (Exploit-DB entry for authenticated exploit and related CVE records), the vulnerability can be triggered through the CSV Import workflow after logging in as an admin, enabling an a...

CVE-2023-31699

ChurchCRM v4.5.4 is vulnerable to Reflected Cross-Site Scripting XSS via image file...

CVE-2022-35137

DGIOT Lightweight industrial IoT v4.5.4 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

CVE-2022-35137

DGIOT Lightweight industrial IoT v4.5.4 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

Cross site scripting

DGIOT Lightweight industrial IoT v4.5.4 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

CVE-2022-35137

DGIOT Lightweight industrial IoT v4.5.4 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

CVE-2022-35137

DGIOT Lightweight Industrial IoT v4.5.4 contains multiple cross-site scripting (XSS) vulnerabilities affecting the product’s web interfaces. Public descriptions across CVE-2022-35137 and Red Hat/EUVD/NVD mirrors confirm XSS as the core issue; no exploited assets or specific vulnerable components ...

CVE-2019-20062

MFScripts YetiShare v3.5.2 through v4.5.4 might allow an attacker to reset a password by using a leaked hash the hash never expires until used...

CVE-2019-20061

The user-introduction email in MFScripts YetiShare v3.5.2 through v4.5.4 may leak the system-picked password if this email is sent in cleartext. In other words, the user is not allowed to choose their own initial password...

CVE-2016-4581

fs/pnode.c in the Linux kernel before 4.5.4 does not properly traverse a mount propagation tree in a certain case involving a slave mount, which allows local users to cause a denial of service NULL pointer dereference and OOPS via a crafted series of mount system calls...

phpProfiles 4.5.4 Beta XSS / RFI / SQL Injection

Exploit Title: phpProfiles v4.5.4 Beta - Multiple Vulnerabilities Date: 24/7/2012 Author: L0n3ly-H34rT My Site: http://se3c.tk/ Contact: [email protected] Software Link: http://sourceforge.net/projects/phpprofiles/files/latest/download Tested on: Linux/Windows 1- Remote File Include : In Fi...