[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 248268 Download | Alert*

The editor in IPython Notebook before 3.2.2 and Jupyter Notebook 4.0.x before 4.0.5 allows remote attackers to execute arbitrary JavaScript code via a crafted file, which triggers a redirect to files/, related to MIME types.

SQL Injection exists in AcyMailing Joomla Component before 4.9.5 via exportgeolocorder in a geolocation_longitude request to index.php.

JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script.

JEvents Joomla Component before 3.4.0 RC6 has SQL Injection via evid in a Manage Events action.

JNews Joomla Component before 8.5.0 allows arbitrary File Upload via Subscribers or Templates, as demonstrated by the .php5 extension.

JNews Joomla Component before 8.5.0 allows SQL injection via upload thumbnail, Queue Search Field, Subscribers Search Field, or Newsletters Search Field.

JNews Joomla Component before 8.5.0 has XSS via the mailingsearch parameter.

HikaShop Joomla Component before 2.6.0 has XSS via an injected payload[/caption].

SQL injection vulnerability in ZCMS 1.1.

Cross-site scripting (XSS) vulnerability in ZCMS JavaServer Pages Content Management System 1.1.


Pages:      Start    9083    9084    9085    9086    9087    9088    9089    9090    9091    9092    9093    9094    9095    9096    ..   24826

© SecPod Technologies