Lucene search
K

4 matches found

OSV
OSV
added 2024/03/22 3:31 p.m.41 views

GHSA-F6MH-79VH-2HV7 Cross-site Scripting in Moodle Chat

The Chat activity in Moodle 4.3.3 allows students to insert a potentially unwanted HTML A element or IMG element, or HTML content that leads to a performance degradation. NOTE: the vendor's UsingChat page says "If you know some HTML code, you can use it in your text to do things like insert image...

5.4CVSS5.2AI score0.00551EPSS
Exploits0References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

ig shop 1.0 (eval/SQL Injection) Multiple Vulnerabilities

No description provided by source. If eval is the answer, then you are asking the wrong question. --Unknowen ig-shop suffers from two eval's that can be controlled by an attacker: http://127.0.0.1/igshop/cart.php?action=;phpinfo;// ./cart.php line 692: eval cart$action;;...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/01/05 12:0 a.m.18 views

iG Shop 1.0 (eval/sql injection) Multiple Remote Vulnerabilities

No description provided by source. "If eval is the answer, then you are asking the wrong question." --Unknowen ig-shop suffers from two eval's that can be controlled by an attacker: http://127.0.0.1/igshop/cart.php?action=;phpinfo;// ./cart.php line 692: eval "cart$action;";...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/01/05 12:0 a.m.28 views

iG Calendar 1.0 (user.php id variable) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================================= iG Calendar 1.0 user.php id variable Remote SQL Injection Vulnerability ========================================================================= SQL Injection in...

7.1AI score
Exploits0
Rows per page
Query Builder