Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-31298: GitHub - bigzooooz/CVE-2022-31298: Haraj Script 3.7 - Authenticated Stored XSS

A cross-site scripting vulnerability in the ads comment section of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request.

CVE
Open in Source
#xss#vulnerability#web#ubuntu#js#git#auth

CVE-2022-31298

Haraj Script 3.7 - Authenticated Stored XSS

Exploit Title: Haraj Script 3.7 - Authenticated Stored XSS****Date: 2022-06-13****CVE: CVE-2022-31298****Exploit Author: Abdulaziz Saad (@b4zb0z)****Vendor Homepage: https://angtech.org/****Software Link: https://angtech.org/product/view/3****Version: 3.7****Tested on: LAMP, Ubuntu

[#] Exploitation : exploit ads comment section directly with js payload

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE