89 matches found
CVE-2025-60781
PHP Education Manager v1.0 is vulnerable to Cross Site Scripting XSS in the worksheet.php file via the participantname parameter...
CVE-2025-60781
PHP Education Manager v1.0 is vulnerable to Cross Site Scripting XSS in the worksheet.php file via the participantname parameter...
CVE-2025-60781
PHP Education Manager v1.0 is affected by a Cross-Site Scripting (XSS) vulnerability in worksheet.php via the participant_name parameter. The root cause is an unvalidated/unsanitized input in worksheet.php that can be reflected in the web page. The documents do not provide details on affected env...
CVE-2025-60781
PHP Education Manager v1.0 is vulnerable to Cross Site Scripting XSS in the worksheet.php file via the participantname parameter...
PHP Education Management 安全漏洞
PHP Education Management is an education manager from the individual developer Iqbolshoh Ilhomjonov. A security vulnerability exists in PHP Education Management version 1.0, which stems from an unvalidated parameter participantname in the worksheet.php file and could lead to a cross-site scriptin...
EUVD-2024-52673
Malicious code in bioql PyPI...
EUVD-2022-42288
Malicious code in bioql PyPI...
CVE-2024-54795
SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...
SpagoBI 3.5.1 Cross Site Scripting Vulnerability
CVE-2024-54795 Severity : Medium 5.4 CVSS score : CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Summary : Engineering Ingegneria Informatica SpagoBI version 3.5.1 is affected by multiple stored XSS inside of the worksheet designer page. Poc Steps to Reproduce : 1. While editing a document insertin...
SpagoBI 3.5.1 Cross Site Scripting
SpagoBI versions 3.5.1 and below suffer from persistent cross site scripting vulnerabilities. CVE-2024-54795 Severity : Medium 5.4 CVSS score : CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Summary : Engineering Ingegneria Informatica SpagoBI version 3.5.1 is affected by multiple stored XSS inside...
CVE-2024-54795
SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...
CVE-2024-54795
SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...
CVE-2024-54795
SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...
PT-2025-3073 · Spagobi · Spagobi
Name of the Vulnerable Software and Affected Versions: SpagoBI version 3.5.1 Description: The issue concerns multiple Stored Cross-Site Scripting XSS vulnerabilities found in the create/edit forms of the worksheet designer function. This allows for the potential execution of malicious scripts,...
CVE-2024-54795
SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...
CVE-2024-54795
CVE-2024-54795 affects the open‑source BI suite SpagoBI v3.5.1 and earlier . Multiple stored XSS vulnerabilities exist in the worksheet designer’s create/edit forms. Exploitation requires user interaction and sufficient permissions to access the worksheet designer, enabling an attacker to inject ...
Engineering SpagoBI 跨站脚本漏洞
Engineering SpagoBI is an open source Business Intelligence suite based on the J2EE framework from the Italian company Engineering. The suite is mainly used to manage BI objects such as reports, scorecards, and data mining models, which can be controlled, validated, verified and distributed throu...
PT-2025-34632
Name of the Vulnerable Software and Affected Versions: PhpOffice/PhpSpreadsheet versions prior to 1.30.0 PhpOffice/PhpSpreadsheet versions prior to 2.1.12 PhpOffice/PhpSpreadsheet versions prior to 2.4.0 PhpOffice/PhpSpreadsheet versions prior to 3.10.0 PhpOffice/PhpSpreadsheet versions prior to...
[SECURITY] Fedora 38 Update: perl-Spreadsheet-ParseXLSX-0.31-1.fc38
This module is an adaptor for that reads XLSX files. For documentation about the various data that you can retrieve from these classes, please see , , , and...
XWiki Platform 注入漏洞
XWiki Platform is a suite of Wiki platforms for creating Web collaboration applications from XWiki France. An injection vulnerability exists in XWiki Platform that originates from the use of the right side of the Scheduler Application worksheet page to perform any action...