CVE-2020-15948 (chat)
eGain Chat 15.5.5 allows XSS via the Name (aka full_name) field. Devamını Oku
Devamını oku
Day: Temmuz 30, 2021
CVE-2020-22765 (nukeviet)
Cross Site Scripting (XSS) vulnerability in NukeViet cms 4.4.0 via the editor in the News module. Devamını Oku
CVE-2020-18013 (whatsns)
SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?admin_banned/add.htm. Devamını Oku
CVE-2020-22765
Cross Site Scripting (XSS) vulnerability in NukeViet cms 4.4.0 via the editor in the News module. Devamını Oku
CVE-2020-22761
Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via the DeleteFile function in flat/admin.php. Devamını Oku
CVE-2020-21854
Cross Site Scripting vulnerabiity exists in WDScanner 1.1 in the system management page. Devamını Oku
CVE-2020-21809
SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the (1) listid parameter in detail.php and the (2) group_price or groupid parameters…
CVE-2020-21808
SQL Injection vulnerability in NukeViet CMS 4.0.10 – 4.3.07 via:the topicsid parameter in modules/news/admin/addtotopics.php. Devamını Oku
CVE-2020-21806
SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php.. Devamını Oku
CVE-2020-20701
A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.…