25 matches found
EUVD-2020-15213
Malware in sbrugna...
EUVD-2010-3674
Malware in sbrugna...
EUVD-2022-1915
Malicious code in bioql PyPI...
EUVD-2022-4848
Malicious code in bioql PyPI...
CVE-2023-36995
TravianZ through 8.3.4 allows XSS via the Alliance tag/name, the statistics page, the link preferences, the Admin Logs, or the COOKUSR cookie...
CVE-2018-16626
index.php/Admin/Classes in Typesetter 5.1 allows XSS via the description of a new class name...
CVE-2025-27499
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting XSS vulnerability was identified in the processaedicaosocio.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the...
CVE-2024-51682
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes HT Builder – WordPress Theme Builder for Elementor ht-builder allows Stored XSS.This issue affects HT Builder – WordPress Theme Builder for Elementor: from n/a through = 1.3.0...
CVE-2024-37217
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ProWCPlugins Empty Cart Button for WooCommerce allows Stored XSS.This issue affects Empty Cart Button for WooCommerce: from n/a through 1.3.8...
chin-den.com Cross Site Scripting vulnerability OBB-2779982
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Popup Builder < 3.74 - Authenticated Reflected Cross-Site Scripting (XSS)
The "All Subscribers" setting page of Popup Builder was vulnerable to reflected Cross-Site Scripting. http://example.com/wp-admin/edit.php?posttype=popupbuilder&page=sgpbSubscribers&sgpb-subscribers-date=%22%3E%3Cscript%3Ealert%28origin%29%3C%2Fscript%3E Video:...
jasig.275507.n4.nabble.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1182252 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
LANGO Codeigniter Multilingual Script 1.0 Cross Site Scripting Vulnerability
LANGO Codeigniter Multilingual Script version 1.0 suffers from html injection and cross site scripting vulnerabilities. Exploit Title: LANGO - Codeigniter Multilingual Script 1.0 - HTML Injection and Stored XSS Exploit Author: Ismail Tasdelen Vendor Homepage: http://pokkho.com/lango/ Software Lin...
andrewlermsider.com XSS vulnerability
Open Bug Bounty ID: OBB-584230 Description| Value ---|--- Affected Website:| andrewlermsider.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
de1.hostedftp.com XSS vulnerability
On the 19.01.2018 security researcher reported a XSS vulnerability affecting the de1.hostedftp.com website via the Open Bug Bounty coordinated vulnerability disclosure program. Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 19 January, 201...
xn--oy2b29kmoezta.com XSS vulnerability
Vulnerable URL: http://www.xn--oy2b29kmoezta.com/online.php/'%22--!%3E%20%3Cimg%20src=x%20onerror=alert%22openbugbounty%22%3E?ptype=view=5487=1=online Details: Description| Value ---|--- Patched:| No Latest check for patch:| 07.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly...
cachacasalinas.com.br XSS vulnerability
Vulnerable URL: http://www.cachacasalinas.com.br/home.php?lang=pt" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4772798 VIP website status:| No Check cachacasalinas.com.br SSL...
sps.edu XSS vulnerability
Vulnerable URL: https://www.sps.edu/podium/default.aspx?t=52562=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 10:11 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Ran...
jcrew.com XSS vulnerability
Vulnerable URL: https://www.jcrew.com/jo/womenscategory/shoes/espadrilles/PRDO"VRC5447/C5447.jsp Details: Description| Value ---|--- Patched:| Yes, at 07.11.2016 Latest check for patch:| 07.11.2016 04:52 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1611 Googl...
Unfixed XSS vulnerability at www.nuestro-tiempo.com
Security researcher xylitol, has submitted on 19/08/2008 a cross-site-scripting XSS vulnerability affecting www.nuestro-tiempo.com, which at the time of submission ranked 216939 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/08/2008. It is...