#php

CMSshop version 1 suffers from a cross site scripting vulnerability.

2 years ago

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ssh #ruby #firefox

CMSninesol 1.0 Cross Site Scripting

CMSninesol version 1.0 suffers from a cross site scripting vulnerability.

2 years ago

Packet Storm

Open in Source

#xss #vulnerability #windows #google #php #auth #firefox

CVE-2023-38306: Webmin-2.021/CVE-2023-38306 at main · jaysharma786/Webmin-2.021

An issue was discovered in Webmin 2.021. A Cross-site Scripting (XSS) Bypass vulnerability was discovered in the file upload functionality. Normally, the application restricts the upload of certain file types such as .svg, .php, etc., and displays an error message if a prohibited file type is detected. However, by following certain steps, an attacker can bypass these restrictions and inject malicious code.

2 years ago

CVE

Open in Source

#xss #vulnerability #web #git #php

CVE-2023-34842: 织梦 (DedeCMS) 官方网站 - 内容管理系统

Remote Code Execution vulnerability in DedeCMS through 5.7.109 allows remote attackers to run arbitrary code via crafted POST request to /dede/tpl.php.

2 years ago

CVE

Open in Source

#vulnerability #php #rce

CVE-2023-34635: Wifi Soft Unibox Administration 3.0

Wifi Soft Unibox Administration 3.0 and 3.1 is vulnerable to SQL Injection. The vulnerability occurs because of not validating or sanitizing the user input in the username field of the login page.

2 years ago

CVE

Open in Source