Kentico CMS version 9.0-12.0.49 suffers from a persistent cross site scripting vulnerability.
>> CATEGORY: exploit
openMAINT version 1.1-2.4.2 suffers from an arbitrary file upload vulnerability.
DynPG version 4.9.1 suffers from a persistent cross site scripting vulnerability.
Sage DPW versions 2020_06_000 and 2020_06_001 suffer from cross site scripting and unauthenticated malicious file upload vulnerabilities.
JioChat for Android has an issue where a caller can cause the callee device to send audio without user interaction.
Twitter Analytics suffers from an open redirection vulnerability that can assist in phishing attacks.
Garfield Petshop versions through 2020-10-01 suffer from a cross site request forgery vulnerability.
Multiple Atlassian products suffer from persistent cross site scripting vulnerabilities. Vulnerable products include PlantUML version 6.43, Refined Toolkit for Confluence version 2.2.5, Linking for Confluence version 5.5.3, Countdown Timer version…
Seat Reservation System version 1.0 suffers from a persistent cross site scripting vulnerability.
Textpattern CMS version 4.6.2 suffers from a persistent cross site scripting vulnerability.