59 matches found
CVE-2025-1360
A vulnerability, which was classified as problematic, was found in Internet Web Solutions Sublime CRM up to 20250207. Affected is an unknown function of the file /crm/inicio.php of the component HTTP POST Request Handler. The manipulation of the argument msgto leads to cross site scripting. It is...
EUVD-2007-3062
Malware in sbrugna...
EUVD-2024-43396
Malicious code in bioql PyPI...
CVE-2025-24610
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Christian Leuenberg Restrict Anonymous Access restrict-anonymous-access allows Stored XSS.This issue affects Restrict Anonymous Access: from n/a through = 1.2...
CVE-2009-2082
SQL injection vulnerability in insidepage.php in Creative Web Solutions Multi-Level CMS 1.21 allows remote attackers to execute arbitrary SQL commands via the catid parameter. NOTE: some of these details are obtained from third party information...
CVE-2025-1360 Internet Web Solutions Sublime CRM HTTP POST Request inicio.php cross site scripting
A vulnerability, which was classified as problematic, was found in Internet Web Solutions Sublime CRM up to 20250207. Affected is an unknown function of the file /crm/inicio.php of the component HTTP POST Request Handler. The manipulation of the argument msgto leads to cross site scripting. It is...
CVE-2025-1360 Internet Web Solutions Sublime CRM HTTP POST Request inicio.php cross site scripting
A vulnerability, which was classified as problematic, was found in Internet Web Solutions Sublime CRM up to 20250207. Affected is an unknown function of the file /crm/inicio.php of the component HTTP POST Request Handler. The manipulation of the argument msgto leads to cross site scripting. It is...
PT-2025-6893 · Internet Web Solutions · Sublime Crm
Name of the Vulnerable Software and Affected Versions: Internet Web Solutions Sublime CRM up to 20250207 Description: A problematic vulnerability was found in the HTTP POST Request Handler component of Internet Web Solutions Sublime CRM, affecting an unknown function of the file /crm/inicio.php...
CVE-2025-24610
CVE-2025-24610 is a stored Cross-Site Scripting vulnerability in the WordPress plugin Restrict Anonymous Access (versions up to 1.2). The issue arises from improper neutralization of input during web page generation, allowing attacker-controlled input to be stored and subsequently executed in the...
CVE-2024-51377
CVE-2024-51377 affects Ladybird Web Solution Faveo Helpdesk & Servicedesk (On-Premise and Cloud) v9.2.0. The issue allows a remote attacker to execute arbitrary code via the Subject and Identifier fields. In the connected sources, the vulnerability is documented across multiple feeds (including R...
CVE-2024-49334
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Unizoe Web Solutions jLayer Parallax Slider jlayer-parallax-slider-wp allows Reflected XSS.This issue affects jLayer Parallax Slider: from n/a through = 1.0...
CVE-2024-49334
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Unizoe Web Solutions jLayer Parallax Slider allows Reflected XSS.This issue affects jLayer Parallax Slider: from n/a through 1.0...
CVE-2024-49334 WordPress jLayer Parallax Slider plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Unizoe Web Solutions jLayer Parallax Slider jlayer-parallax-slider-wp allows Reflected XSS.This issue affects jLayer Parallax Slider: from n/a through = 1.0...
CVE-2024-49334
The CVE-2024-49334 entry relates to the WordPress plugin jLayer Parallax Slider (versions n/a through 1.0). The connected sources indicate the vulnerability is an improper input neutralization during web page generation, resulting in a reflected Cross-Site Scripting (XSS) flaw. Exploitation is de...
CVE-2024-49334 WordPress jLayer Parallax Slider plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Unizoe Web Solutions jLayer Parallax Slider jlayer-parallax-slider-wp allows Reflected XSS.This issue affects jLayer Parallax Slider: from n/a through = 1.0...
gally-websolutions.com Improper Access Control vulnerability OBB-3942178
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2024-30497
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in I Thirteen Web Solution WP Responsive Tabs horizontal vertical and accordion Tabs.This issue affects WP Responsive Tabs horizontal vertical and accordion Tabs: from n/a through 1.1.17...
woodfordwebsolutions.co.uk Cross Site Scripting vulnerability OBB-3500350
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
dev1.vintage.tristarwebsolutions.co.uk Cross Site Scripting vulnerability OBB-3429895
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
mackwebsolutions.com Cross Site Scripting vulnerability OBB-2716012
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...