6 matches found
CVE-2020-23814
Multiple cross-site scripting XSS vulnerabilities in xxl-job v2.2.0 allow remote attackers to inject arbitrary web script or HTML via 1 AppName and 2AddressList parameter in JobGroupController.java file...
CVE-2023-34412 Stored XXS vulnerability in mbnet, mbnet.rokey, REX 200 and REX 250
A vulnerability in Red Lion Europe mbNET/mbNET.rokey and Helmholz REX 200 and REX 250 devices with firmware lower 7.3.2 allows an authenticated remote attacker with high privileges to inject malicious HTML or JavaScript code XSS...
openSUSE Security Update : rubygem-loofah (openSUSE-2019-963)
This update for rubygem-loofah fixes the following issues : Security issue fixed : - CVE-2018-16468: Fixed XXS by removing the svg animate attribute from from the allowlist bsc1113969. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network...
XXS in script Phorum
======================================================================= Script : Script Phorum Found By : Hasadya Raed Contact : [email protected] ================================================= exemple: http://www.site.com/path/admin.php?upgradefile="alert.;/script ====================== Greetz...
XXS Attack On FarsiNews
XSS attack: http://target/farsinewspath /index.php?month=3E3Cscript3Ealertdocument.cookie3C/script3E3C!--&year=3E3Cscript3Ealertdocument.cookie3C/script3E3C!-- http://target/farsinewspath/admin.php?mod=3E3Cscript3Ealertdocument.cookie3C/script3E3C !-- Original Advisory...
Auction Works XXS Vulnerability
1ndonesian Security Team 1st http://bosen.net/releases/ ============================================================================= Security Advisory Advisory Name: Auction Works XXS Vulnerability Release Date: 07/15/2003 Application: Current/Running Platform: Win32 Severity: Medium BUG Type: X...