Security
Headlines
HeadlinesLatestCVEs

Tag

#xss

CVE-2022-37421: CVE-2022-37421 Stored XSS in custom meta tags

Silverstripe silverstripe/cms through 4.11.0 allows XSS.

CVE
Open in Source
#xss#git#java#auth
CVE-2022-42095: [Declined]Backdrop-XSS-at-Pages - GrimTheRipper - Medium

Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Page content.

GHSA-g9cp-9fw3-56cf: Cross-site Scripting in Backdrop CMS

Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via 'Comment.'s

GHSA-vcvg-g8p2-3hqr: Cross-site Scripting in Backdrop CMS

Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the 'Card' content.

CVE-2022-42989: CVEs/SankhyaERP_XSS_Account_Takeover.txt at main · 0xLUC4S/CVEs

ERP Sankhya before v4.11b81 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Caixa de Entrada.

CVE-2022-41445: GitHub - RashidKhanPathan/CVE-2022-41445: Cross Site Scripting in Teacher's Record Management System using CodeIgnitor

A cross-site scripting (XSS) vulnerability in Record Management System using CodeIgniter 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Subject page.

CVE-2022-42094: [CVE-2022–42094]Backdrop-XSS-at-Cards - GrimTheRipper - Medium

Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the 'Card' content.

CVE-2022-45363: WordPress Betheme premium theme <= 26.6.1 - Auth. Stored Cross-Site Scripting (XSS) vulnerability - Patchstack

Auth. (subascriber+) Stored Cross-Site Scripting (XSS) in Muffingroup Betheme theme <= 26.6.1 on WordPress.