EUVD-2018-18135

Malware in sbrugna...

GHSA-F34M-X9PJ-62VQ Cross-Site Scripting Vulnerability in @joeattardi/emoji-button

Impact There are two vectors for XSS attacks with versions of @joeattardi/emoji-button before 4.6.2: - A URL for a custom emoji - An i18n string In both of these cases, a value can be crafted such that it can insert a script tag into the page and execute malicious code. Patches This vulnerability...

ElkarBackup 1.3.3 - 'Policy[name]' and 'Policy[Description]' Stored Cross-site Scripting

Exploit Title: ElkarBackup 1.3.3 - 'Policyname' and 'PolicyDescription' Stored Cross-site Scripting Date: 2020-08-22 Exploit Author: Vyshnav NK Vendor Homepage: https://www.elkarbackup.org/ Software Link: https://github.com/elkarbackup/elkarbackup/wiki/Installation Version: 1.3.3 Tested on: Linux...

Mozilla Foundation Security Advisory 2008-62

Mozilla Foundation Security Advisory 2008-62 Title: Additional XSS attack vectors in feed preview Impact: Critical Announced: December 16, 2008 Reporter: mozbugra4 Products: Firefox Fixed in: Firefox 2.0.0.19 Description Mozilla security researcher mozbugra4 reported an additional variation on th...

Cmscout <= V1.10 multiple XSS attack vectors

Cmscout = V1.10 multiple XSS attack vectors Discovered by: Nomenumbra Date: 5/2/2006 impact:moderate privilege escalation,possible defacement CMScout is a CMS Content management system for scouting related groups from around the world. A CMS is a piece of web software that makes it easy for you t...