Invision Community 4.5.4 – ‘Field Name’ Stored Cross-Site Scripting
>> ARCHIVE: 2020-12
Invision Community 4.5.4 – ‘Field Name’ Stored Cross-Site Scripting
Sony BRAVIA Digital Signage 1.7.8 – System API Information Disclosure
Coastercms 5.8.18 – Stored XSS
Sony BRAVIA Digital Signage 1.7.8 – Unauthenticated Remote File Inclusion
mojoPortal forums 2.7.0.0 – ‘Title’ Persistent Cross-Site Scripting
Online Matrimonial Project 1.0 – Authenticated Remote Code Execution
EgavilanMedia Address Book 1.0 Exploit – SQLi Auth Bypass
TypeSetter version 5.1 suffers from a cross site request forgery vulnerability.
SciKit-Learn version 0.23.2 suffers from a denial of service vulnerability.
WordPress EventON Calendar plugin version 3.0.5 suffers from a cross site scripting vulnerability.