2 matches found
GHSA-4X6X-8RM8-C37J Extension:TabberNeue vulnerable to Cross-site Scripting
Summary There are several sources of arbitrary, unescaped user input being used to construct HTML, which allows any user that can edit pages or otherwise render wikitext to XSS other users. Edit: Only the first XSS can be reproduced in production. Details ✅ Verified and patched in...
cpjobs.com XSS vulnerability
Vulnerable URL: https://www.cpjobs.com/hk/SearchJobs?keyword=%22%2F%3E%27%3E%22%3EI%3Ci%3EI%3Csvg%2Fonload%3Dalert%2Fopenbugbounty%2F%3E=2=1 Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 26.11.2017 Vulnerability type:| XSS Vulnerability status:|...