Laravel Nova version 3.7.0 suffers from a denial of service vulnerability.
>> CATEGORY: exploit
Laravel Nova version 3.7.0 suffers from a denial of service vulnerability.
CMS Made Simple version 2.2.15 suffers from a persistent cross site scripting vulnerability via an authenticated SVG file upload.
Zabbix version 5.0.0 suffers from a persistent cross site scripting vulnerability.
MiniCMS version 1.10 suffers from a persistent cross site scripting vulnerability.
Huawei HedEx Lite (DM) suffers from a path traversal vulnerability.
VestaCP version 0.9.8-26 suffers from a cross site scripting vulnerability.
VestaCP version 0.9.8-26 suffers from an insufficient session validation vulnerability.
Perfex CRM version 2.4.4 suffers from a persistent cross site scripting vulnerability.
A session token vulnerability has been discovered in VestaCP version 0.9.8-26. The vulnerability allows remote attackers to gain unauthenticated or unauthorized access by client-side token manipulation.
CCt99 Chichen Tech CMS version 1.0 suffers from a remote SQL injection vulnerability.