CVE-2020-19897

A reflected Cross Site Scripting (XSS) in wuzhicms v4.1.0 allows remote attackers to execute arbitrary web script or HTML via the imgurl parameter.Read More ...

Continue Reading

28 июня, 2022

CVE-2022-29858

Silverstripe silverstripe/assets through 1.10 allows XSS.Read More ...

Continue Reading

28 июня, 2022

CVE-2022-25238

Silverstripe silverstripe/framework through 4.10.0 allows XSS, inside of script tags that can can be added to website content via XHR by an authenticated CMS user if the cwp-core module is not install ...

Continue Reading

28 июня, 2022

CVE-2022-31887

Marval MSM v14.19.0.12476 has a 0-Click Account Takeover vulnerability which allows an attacker to change any user's password in the organization, this means that the user can also escalate achieve Pr ...

Continue Reading

28 июня, 2022

CVE-2022-24444

Silverstripe silverstripe/framework through 4.10 allows Session Fixation.Read More ...

Continue Reading

28 июня, 2022

CVE-2022-31884

Marval MSM v14.19.0.12476 has an Improper Access Control vulnerability which allows a low privilege user to delete other users API Keys including high privilege and the Administrator users API Keys.Re ...

Continue Reading

28 июня, 2022

heracle.de Cross Site Scripting vulnerability OBB-2694220

Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...

Continue Reading

28 июня, 2022

hensel-security.de Cross Site Scripting vulnerability OBB-2694219

Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...

Continue Reading

28 июня, 2022

1 73 120 73 121 73 122 73 123 73 124 75 518

Back to Main
Subscribe for the latest news: