9 matches found
WonderLink Yomi-Search Cross-Site Scripting Vulnerability
WonderLink Yomi-Search is a WonderLink application. A versatile search engine. A cross-site scripting vulnerability exists in version 4.22 of Yomi-Search Ver4.22, which originates from the ability to execute arbitrary script on the web browser of a user accessing a website that uses Yomi-Search. ...
WonderLink Yomi-Search 跨站脚本漏洞
WonderLink Yomi-Search is a WonderLink application. A multi-purpose search engine. A security vulnerability exists in Yomi-Search Ver4.22, which can be exploited to execute arbitrary script on the web browser of a user accessing a website that uses Yomi-Search...
WonderLink Yomi-Search 跨站脚本漏洞
WonderLink Yomi-Search is a WonderLink application. A multi-purpose search engine. A security vulnerability exists in Yomi-Search Ver4.22, which can be exploited to execute arbitrary script on the web browser of a user accessing a website that uses Yomi-Search...
WonderLink Yomi-Search 跨站脚本漏洞
WonderLink Yomi-Search is a WonderLink application. A versatile search engine. A cross-site scripting vulnerability exists in version 4.22 of Yomi-Search Ver4.22, which originates from the ability to execute arbitrary script on the web browser of a user accessing a website that uses Yomi-Search. ...
WonderLink WL-Enq Cross-Site Scripting Vulnerability
The WonderLink WL-Enq is a CGI Common Gateway Interface that provides network survey functionality. A cross-site scripting vulnerability exists in WonderLink WL-Enq versions 1.11 and 1.12. The vulnerability stems from the WEB application lacking proper validation of client data. An attacker could...
WL Enq Operating System Command Execution Vulnerability
The WonderLink WL-Enq is a CGI Common Gateway Interface that provides network survey functionality. A security vulnerability exists in WonderLink WL-Enq versions 1.11 and 1.12. A remote attacker could exploit the vulnerability to execute arbitrary operating system commands with administrative...
WL-Enq (WEB Enquete) vulnerable to cross-site scripting
Overview WL-Enq WEB Enquete provided by WonderLink is a CGI to provide web enquete functions. WL-Enq WEB Enquete contains a cross-site scripting vulnerability CWE-79. During the meeting of Committee for authorizing the disclosure of unresolved vulnerabilities held on January 16, 2020, it was judg...
JVN#27951364: WL-Enq (WEB Enquete) vulnerable to OS command injection
WL-Enq WEB Enquete provided by WonderLink is a CGI to provide web enquete functions. WL-Enq WEB Enquete contains an OS command injection vulnerability CWE-78. Impact A remote attacker may execute arbitrary OS commands with the administrative privilege. Solution Consider stop using WL-Enq 1.12 Sin...
JVN#88033799: WL-Enq (WEB Enquete) vulnerable to cross-site scripting
WL-Enq WEB Enquete provided by WonderLink is a CGI to provide web enquete functions. WL-Enq WEB Enquete contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of the user who is accessing a website that uses WL-Enq WEB Enquete. Solution...