#apple

CVE-2020-24075: Kalium Changelog - Laborator

Cross Site Scripting (XSS) vulnerability in Name Input Field in Contact Us form in Laborator Kalium before 3.0.4, allows remote attackers to execute arbitrary code.

2 years ago

CVE

Open in Source

#sql #xss #vulnerability #web #ios #android #windows #apple #google #microsoft #js #git #java #wordpress #intel #php #perl #auth #chrome #firefox #sap #ssl

CVE-2020-25915: There is a store Stored XSS vulnerability in user management · Issue #675 · thinkcmf/thinkcmf

Cross Site Scripting (XSS) vulnerability in UserController.php in ThinkCMF version 5.1.5, allows attackers to execute arbitrary code via crafted user_login.

2 years ago

CVE

Open in Source

#xss #vulnerability #web #windows #apple #js #java #php #chrome #webkit

CVE-2020-27449: Release Notes - ManageEngine Password Manager Pro

Cross Site Scripting (XSS) vulnerability in Query Report feature in Zoho ManageEngine Password Manager Pro version 11001, allows remote attackers to execute arbitrary code and steal cookies via crafted JavaScript payload.

CVE-2020-36082: An arbitrary file upload vulnerability was found · Issue #7 · alexlang24/bloofoxCMS

File Upload vulnerability in bloofoxCMS version 0.5.2.1, allows remote attackers to execute arbitrary code and escalate privileges via crafted webshell file to upload module.

2 years ago

CVE

Open in Source

#vulnerability #web #windows #apple #js #java #php #nginx #auth #chrome #webkit

DigaSell Digital Store PHP Script 1.0.0 Cross Site Scripting

DigaSell Digital Store PHP Script version 1.0.0 suffers from a cross site scripting vulnerability.

2 years ago

Packet Storm

Open in Source

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #git #java #php #perl #auth #ruby #firefox

CVE-2023-40225

HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4.x through 2.4.23, 2.5.x and 2.6.x before 2.6.15, 2.7.x before 2.7.10, and 2.8.x before 2.8.2 forwards empty Content-Length headers, violating RFC 9110 section 8.6. In uncommon cases, an HTTP/1 server behind HAProxy may interpret the payload as an extra request.

2 years ago

CVE

Open in Source

#sql #xss #web #ios #mac #windows #apple #google #ubuntu #linux #debian #redis #js #git #c++#perl #xpath #ldap #amd #buffer_overflow #acer #auth #ibm #postgres #chrome #sap #ssl

DriverPack Solution CMS 17.11.108 Cross Site Scripting

DriverPack Solution CMS version 17.11.108 suffers from a cross site scripting vulnerability.

2 years ago

Packet Storm

Open in Source

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

Desenvolvido C3iM CMS 2.0 Cross Site Scripting

Desenvolvido C3iM CMS version 2.0 suffers from a cross site scripting vulnerability.

2 years ago

Packet Storm

Open in Source

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

CVE-2023-38248: Adobe Security Bulletin

Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

2 years ago

CVE

Open in Source

#vulnerability #mac #windows #apple #dos #ssh #zero_day

New Statc Stealer Malware Emerges: Your Sensitive Data at Risk

A new information malware strain called Statc Stealer has been found infecting devices running Microsoft Windows to siphon sensitive personal and payment information. "Statc Stealer exhibits a broad range of stealing capabilities, making it a significant threat," Zscaler ThreatLabz researchers Shivam Sharma and Amandeep Kumar said in a technical report published this week. "It can steal

2 years ago

The Hacker News

Open in Source

#web #windows #apple #google #microsoft #c++#pdf #auth #chrome #firefox #The Hacker News

Tag

#apple