Proof of concept code that demonstrates a full CSP bypass in Chromium 83.
>> ARCHIVE: 2020-12
Proof of concept code that demonstrates a full CSP bypass in Chromium 83.
Savsoft Quiz version 5 suffers from a persistent cross site scripting vulnerability. This finding differs from the original discovery of persistent cross site scripting in this version found originally by…
Forma LMS version 2.3 suffers from a persistent cross site scripting vulnerability.
Composr CMS version 10.0.34 suffers from a persistent cross site scripting vulnerability.
WordPress Canto plugin version 1.3.0 suffers from an unauthenticated server-side request forgery vulnerability.
Phpscript SGH version 0.1.0 suffers from a remote blind SQL injection vulnerability.
Laravel Nova version 3.7.0 suffers from a denial of service vulnerability.
CMS Made Simple version 2.2.15 suffers from a persistent cross site scripting vulnerability via an authenticated SVG file upload.
Zabbix version 5.0.0 suffers from a persistent cross site scripting vulnerability.
MiniCMS version 1.10 suffers from a persistent cross site scripting vulnerability.