14 matches found
EUVD-2015-7272
Malware in sbrugna...
CVE-2025-3253
A vulnerability was found in xujiangfei admintwo 1.0 and classified as problematic. This issue affects some unknown processing of the file /ztree/insertTree. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2024-27694
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the /system/share/ztreecategoryedit...
FlyCms 安全漏洞
FlyCms is an application. A similar to Zhihu to Q&A based on the completely open source JAVA language development of social network building program. A cross-site request forgery vulnerability exists in FlyCms v1.0, which stems from /system/share/ztreecategoryedit does not adequately validate...
zTree Version Detection
Detection of installed version of zTree. This script sends an HTTP GET request and tries to get the version from the response. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
zTree Cross Site Scripting Vulnerability
zTree is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ztreeproject:ztree";...
CVE-2015-7348
Cross-site scripting XSS vulnerability in zTree 3.5.19.1 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter to demo/en/asyncData/getNodesForBigData.php...
Cross site scripting
Cross-site scripting XSS vulnerability in zTree 3.5.19.1 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter to demo/en/asyncData/getNodesForBigData.php...
CVE-2015-7348
Cross-site scripting XSS vulnerability in zTree 3.5.19.1 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter to demo/en/asyncData/getNodesForBigData.php...
CVE-2015-7348
CVE-2015-7348 affects zTree, specifically version 3.5.19.1 (and possibly earlier). The vulnerability is a cross-site scripting (XSS) flaw in the demo/en/asyncData/getNodesForBigData.php handler, triggered via the id parameter. Root cause is improper input handling that allows injection of arbitra...
zTree跨站脚本漏洞
No description provided by source...
zTree Cross-Site Scripting Vulnerability
zTree is a free and open source relies on jQuery to achieve a multi-functional "tree plugin" , it supports JSON data , static and Ajax asynchronous loading of node data as well as a page within the simultaneous generation of multiple instances of Tree . zTree has a cross-site scripting...
zTree 3.5.19.1 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Information -------------------- Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in zTree v3 Affected Software : zTree Affected Versions: v3.5.19.1 and possibly below Vendor Homepage : https://github.com/zTree/zTreev3 Vulnerability...
zTree 3.5.19.1 Cross Site Scripting
Information -------------------- Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in zTree v3 Affected Software : zTree Affected Versions: v3.5.19.1 and possibly below Vendor Homepage : https://github.com/zTree/zTreev3 Vulnerability Type : Cross-site Scripting Severity : Important Statu...