7 matches found
EUVD-2022-2098
Malicious code in bioql PyPI...
ZF-Commons ZfcUser Vulnerable to XSS in Login Redirect
Cross-site scripting XSS vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...
GHSA-33RH-5HVF-5JJP ZF-Commons ZfcUser Vulnerable to XSS in Login Redirect
Cross-site scripting XSS vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...
CVE-2015-1039
Cross-site scripting XSS vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...
CVE-2015-1039
Cross-site scripting XSS vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...
CVE-2015-1039
CVE-2015-1039 affects ZF-Commons ZfcUser before 1.2.2, in which the login redirect parameter (redirect) is vulnerable to XSS via user/login.phtml. The root cause is missing escaping of the URL parameter, allowing an attacker to inject arbitrary script/HTML. Public references (GHSA/FriendsofPHP ad...