EUVD-2015-7272

Malware in sbrugna...

CVE-2025-3253

A vulnerability was found in xujiangfei admintwo 1.0 and classified as problematic. This issue affects some unknown processing of the file /ztree/insertTree. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed t...

CVE-2024-27694

FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the /system/share/ztreecategoryedit...

FlyCms 安全漏洞

FlyCms is an application. A similar to Zhihu to Q&A based on the completely open source JAVA language development of social network building program. A cross-site request forgery vulnerability exists in FlyCms v1.0, which stems from /system/share/ztreecategoryedit does not adequately validate...

zTree Cross Site Scripting Vulnerability

zTree is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ztreeproject:ztree";...

zTree Version Detection

Detection of installed version of zTree. This script sends an HTTP GET request and tries to get the version from the response. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2015-7348

Cross-site scripting XSS vulnerability in zTree 3.5.19.1 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter to demo/en/asyncData/getNodesForBigData.php...

Cross site scripting

Cross-site scripting XSS vulnerability in zTree 3.5.19.1 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter to demo/en/asyncData/getNodesForBigData.php...

CVE-2015-7348

CVE-2015-7348 affects zTree, specifically version 3.5.19.1 (and possibly earlier). The vulnerability is a cross-site scripting (XSS) flaw in the demo/en/asyncData/getNodesForBigData.php handler, triggered via the id parameter. Root cause is improper input handling that allows injection of arbitra...

CVE-2015-7348

Cross-site scripting XSS vulnerability in zTree 3.5.19.1 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter to demo/en/asyncData/getNodesForBigData.php...

zTree跨站脚本漏洞

No description provided by source...

zTree Cross-Site Scripting Vulnerability

zTree is a free and open source relies on jQuery to achieve a multi-functional "tree plugin" , it supports JSON data , static and Ajax asynchronous loading of node data as well as a page within the simultaneous generation of multiple instances of Tree . zTree has a cross-site scripting...

zTree 3.5.19.1 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Information -------------------- Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in zTree v3 Affected Software : zTree Affected Versions: v3.5.19.1 and possibly below Vendor Homepage : https://github.com/zTree/zTreev3 Vulnerability...

zTree 3.5.19.1 Cross Site Scripting

Information -------------------- Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in zTree v3 Affected Software : zTree Affected Versions: v3.5.19.1 and possibly below Vendor Homepage : https://github.com/zTree/zTreev3 Vulnerability Type : Cross-site Scripting Severity : Important Statu...