3 matches found
PT-2022-03: Stored Cross-Site Scripting (XSS)
Since the Site Configuration tool has an upload option, it doesn’t validate the file contents. An attacker can upload a Zip file which, when processed, exploits Stored XSS. The attack can only be performed by an internal user. NetAct 22 SP1037 is already delivered on top of NetAct 22 FP2208, SP...
NASA Tri-Agency Climate Education (TrACE) v1.0 Multiple XSS Vulnerabilities
Summary The Tri-Agency Climate Education TrACE Catalog provides search and browse access to a catalog of educational products and resources. TrACE focuses on climate education resources that have been developed by initiatives funded through NASA, NOAA, and NSF, comprising a tri-agency collaborati...
Microsoft WordPerfect Document Converter Exploit (MS03-036)
Exploit for unknown platform in category remote exploits =========================================================== Microsoft WordPerfect Document Converter Exploit MS03-036 =========================================================== // / Microsoft WordPerfect Document Converter Buffer Overflow...