Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-40348

Cross Site Scripting (XSS) vulnerability in Intern Record System version 1.0 in /intern/controller.php in ‘name’ and ‘email’ parameters, allows attackers to execute arbitrary code.

CVE
Open in Source
#sql#xss#vulnerability#js#php

PKJsSP�UG� intern/config.phpm�] �0����-z�{��J I6fDĻ��n^vfv�g��~w�H��7��ɒOɏ���Z^�1,��\j���a���U :’�nf=��ֵ��C#X����kW ���6�42NQ) ��7|� �O�v����o>�PK�oPxG�H4intern/controller.phpMPAj�0��El���mӜ ��&=�`���Eeɱ��&��ծKj�vg43�ۡ�D������ka�Q}�#���$M2���ɚח���c�Ƞo����������U3����% ~��\"�Nzß���3e�� F�H�Q�h]�OE�U�hG߃�%;�:�+r �W��D�&�K����D��NƉ ����1��@|�� �oX?�T�!N��՘�aВB�c����e��,� 8w ZO p�+4GJ�����V�^Ys���Y�7-��5M@;���?�w�n��Y�J������V�l�*� \ �}�PKl�oP�#ғ intern/department.sql�VmS�H�ί��/I�H�\b�T�aT�����BF�R^�L�r��zH0JH��v�*���gz���݆�!���0�����Xƙ�n�3�Q�@�3����l1�v_^^:����$�w�-�邏@�Ua�` �)D~�Lij_M����H��l*��q�redB��Ѱ�15�dv9���nm I�E���1�������u��� ����� �ęNM� �|���wu��’���k�d��ӄ ��e�(H I�o_z��� @��e�K��H�h &�Il|zZg�oݓ\�]Y��C����p,K��m�b’��Ƽ�`�S���� �^��4Ԡ����m����Ё�~#�@� ���nZտ�m�6���?Su�y����l$QA.7+����ٿ�L�(46��"�s��¢��Aox�{o�oj�(�O���eL�F�z N+e��8��4�8m�"�D�@P�Uc��#�P�V+�+*��28V4M�xU�WY*���p�-7����E�Cl? �M_H�S�S{5�^�w�T7 ���Tw��r�F��������߷���K��4��{M����6�����J �??���u�R��+�����?]�������4I�c)2V��E�q �p�� ������@�ù���ި�z�䜸Ğ����yC��G��ʠT?#훞v�=��ᩆ�v>�79��PK��oPz�J|f� intern/index.php�Wmo�8���Y�h�P�8�$�NP��� �o��ʉg7n�8���3ym�M�’�i_<3�y��x7ʽV��@O�#��f��W��]x��5VGa+�(Y\�E3�7 ]���W1˽/�a:ϳ���|�㝷��D�ȌAx�8X쇙sW���d��ǀ����]��*��Q�6nW��+��Qj�2ŝ�Yf �e��A�(f)E_[C�����jW���\�jGB~�]X��q,̌ ���$ I<�ѳӣ�V�PpMH���<��1[�5Zk�B�(�F���N� DO����~�N�h��xo4dXw’�i�t �x��\�uq�]+�AbP9bx�o�&�!���#Xu�AMs s�} c.��OQ��(J�j2)��8���r��̀܄��ʢ�<�M�Qú�5����U����T<��(�=f’���e%-�)\)O�~/��q�s��X�|�_BXt�>��&NG}���~��z����R�.���xR锦Y�ޤR!���`�hu�7�@��u�?��Uw@�\ ��qux�a�,�����lY��2���ǡ�����q4��x�H\9��Ak�WM`�Ϩ���c˩)�>sU��SB:�*�z�J]�Cw@k?��n� ��#�LU��Ȱ��Wr��r��6�K� ���e�v��Cۊ’������3x o?}xb)���ͺ��|�����}��,_�&ۭ!��}��>�zN~t�RDGq �GR<��(��A#�u�k�m�2�÷i�4�(l#�>u�s��’O�x�[�������I�p�I�TK? ��@�@p{��r��63�� ��_���D���Sc�?���O0���O��ݴ , k �ɕp��_Ea�G��K�m�?v�PK:SP���Tintern/view.php�UK��0�/�"���6]��k’�֥���.�P�H�JYr$�KX��+�������`�O��h�� w��]^ ?�5��\ �Bd���J��a� ,S̝+�M[G�$�G ��u������"��ut����{,*�gY��a��n���n�QLB’j7%O,4ۢv����Jbm��V��5m(�,$��zR�_1bVGɹ��5h:HCE��BX�g�HI��jV!r�p���} %1��z <�M#���D�~��r� ׊B��R��<ߞRGv-�b��"_o�l’#o�^�ه��=z���}��=:0*g��Oo[)�&#��Z�Kp��^5M’!�t�|j���G�|v�Zt�� 4Pe6K�i��w�������.�MrB� �`vd޳Q�*5�_�f���j�c��\��C�x{����S�2�<�^k�Zѷ��]�K�u�q%��(~CW��umvr6�y_�O�����1� p�f]�g�9��bU���兿����7PKJsSP�UG�  intern/config.phpPK�oPxG�H4 �intern/controller.phpPKl�oP�#ғ  )intern/department.sqlPK��oPz�J|f�  �intern/index.phpPK:SP���T � intern/view.phpPK@�

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE