3 matches found
PT-2025-52649
Name of the Vulnerable Software and Affected Versions NetBT Consulting Services Inc. E-Fatura versions prior to 1.2.15 Description An unquoted search path or element issue exists in NetBT Consulting Services Inc. E-Fatura. This allows leveraging or manipulating configuration file search paths,...
Drupal COOKiES Consent Management module < 1.2.15 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module COOKiES Consent Management versions 1.2.15...
CVE-2022-1439
Reflected XSS on demo.microweber.org/demo/module/ in GitHub repository microweber/microweber prior to 1.2.15. Execute Arbitrary JavaScript as the attacked user. It's the only payload I found working, you might need to press "tab" but there is probably a paylaod that runs without user interaction...