WordPress POST SMTP Mailer plugin versions 2.8.7 and below suffer from authorization bypass and cross site scripting vulnerabilities.
1bdd84a69d04f6ca05b840e49215c74a3095a9b4cd20f08c7cd6c500f98bc02fUbuntu Security Notice 6574-1 - Takeshi Kaneko discovered that Go did not properly handle comments and special tags in the script context of html/template module. An attacker could possibly use this issue to inject Javascript code and perform a cross site scripting attack. This issue only affected Go 1.20 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.04. It was discovered that Go did not properly validate the "//go:cgo_" directives during compilation. An attacker could possibly use this issue to inject arbitrary code during compile time.
b8c2a5761a1b9b637336f2af66c0577c0e91e5d6928b1d69d773c8f5060e8589PHPJabbers Meeting Room Booking System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
e6821affd91c6976ec243ea146e7afbb0ed24afc9759a1132aa2d0f6d32f79c1PHPJabbers Event Ticketing System version 1.0 suffers from cross site scripting and html injection vulnerabilities.
2caf4aa999009c25ac7c26798df4e4a0ac8a097c8ef866861469f934e7b3bfcaPHPJabbers Cinema Booking System version 1.0 suffers from reflective and persistent cross site scripting vulnerabilities.
65d36ac9160ab1c240f6675581e697453542fa0e4bd126a1f51e746ce51641f2PHPJabbers Cleaning Business Software version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
e47debdf9fc3c3d01a9a065adc30bc2b0166bcf23690c6d3ac8b4dd15242abfaPHPJabbers Shared Asset Booking System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
55b8208f2ccd19891ff073a3c0c73038d621c5100ca8bca74d3b845c3b903e9aPHPJabbers Bus Reservation System version 1.1 suffers from multiple persistent cross site scripting vulnerabilities.
8ebe12092d83610312fdfb95a2b6f32201f3ab59edc02426a4d719e29e91c032PHPJabbers Restaurant Booking System version 3.0 suffers from reflective and persistent cross site scripting and html injection vulnerabilities.
3527e58d35b014dddf3fabdecfa21d7925e5e154f37bc9e43f02e95c148171a2PHPJabbers Car Park Booking System version 3.0 suffers from persistent cross site scripting and html injection vulnerabilities.
2075cbc5ba61d1bbabbcbba02dd2eaacbe45fccb8991f98495736cf5583bfd84PHPJabbers Hotel Booking System version 4.0 suffers from cross site scripting and html injection vulnerabilities.
51701294776d8fce2ace5d6475553e4cef40dd2a87849b245a73d61b6bf1fae7PHPJabbers Event Booking Calendar version 4.0 suffers from persistent cross site scripting and html injection vulnerabilities.
344e616d3dbc40f99e96a6328d593a2fabfffd531f197e2a0a63d39cd91df76fOX App Suite version 7.10.6-rev51 suffers from an access control vulnerability. Version 7.10.6-rev34 suffers from multiple cross site scripting vulnerabilities.
80185f3d2633831b5738bc1126710375d2e7d24e073ff394c679caa4c61efc56OX App Suite version 7.10.6-rev50 suffers from remote code execution and LDAP injection vulnerabilities. Version 7.10.6-rev33 suffers from a cross site scripting vulnerability.
592f2b04fcdcc6f8a886a43ccea679f6723dca85956b3e11029cce5b8e4022eciGalerie version 3.0.22 suffers from a cross site scripting vulnerability.
1ab0c986c1a7f7b7980237b1617e0e2e1f36299cac4926ea221dcc4d6457f99bForm Tools version 3.1.1 suffers from a cross site scripting vulnerability.
4bc872e037e724b2811d1070399fceeaa68306f4b685d9f450ce5a082eebdc18WebCalendar version 1.3.0 suffers from reflective and persistent cross site scripting vulnerabilities.
cb5698f0beb364a725e199770656e58b9e9a32317192310e1c09e248ae8bad4fWhatACart version 2.0.7 suffers from a cross site scripting vulnerability.
c17cc364b4eb7461dafb8d263042b8f90e6b4194e4c0b4ddd1f2d5702491ef84ShopSite version 14.0 suffers from a persistent cross site scripting vulnerability.
f34fa6a72905f01bb41aaa658d65a5fcc525f2bfd0fd6925a5b8b8f32fc69080Hospital Management System versions 4.0 and below suffer from cross site scripting, remote shell upload, and remote SQL injection vulnerabilities.
4c4cb4162e1a493a04ab18896d55ef8649d628f41d3426944382f8e72a0ea4f9Red Hat Security Advisory 2023-7861-03 - A security update is now available for Red Hat build of Keycloak 22.0.7 images running on OpenShift Container Platform. Issues addressed include bypass and cross site scripting vulnerabilities.
a43e254701b7eb30b58f86a22ec0162fdc94294c52af4f8c808a0dac88a9deadRed Hat Security Advisory 2023-7860-03 - Red Hat build of Keycloak 22.0.7 is now available from the Customer Portal. Issues addressed include bypass and cross site scripting vulnerabilities.
bd77f42fb81bdd69394cf7559995ff5bc7d63bcde027ee27ad485f360d3a7e63Red Hat Security Advisory 2023-7858-03 - A security update is now available for Red Hat Single Sign-On 7.6 from the Customer Portal. Issues addressed include bypass, cross site scripting, and denial of service vulnerabilities.
4f7e250c04328d5a2bc1c02c7f545e8d60acfe2db275a86ff2ea0753e95fc08fRed Hat Security Advisory 2023-7857-03 - A new image is available for Red Hat Single Sign-On 7.6.6, running on OpenShift Container Platform 3.10 and 3.11, and 4.3. Issues addressed include bypass, cross site scripting, and denial of service vulnerabilities.
279db730dc69748f4a962e39c690f93ee52ab83f882105e097594aa5cb1bdf18Red Hat Security Advisory 2023-7856-03 - New Red Hat Single Sign-On 7.6.6 packages are now available for Red Hat Enterprise Linux 8. Issues addressed include bypass, cross site scripting, and denial of service vulnerabilities.
d5e8efdab8a4c8731e2b96f8282b54ca41c19c49aa01d05bf988062db2c38d85
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed