Security
Headlines

Headlines Latest CVEs

Headline

GHSA-q832-2275-rfqh: Subrion CMS XSS in /panel/configuration/financial/

A Cross-site scripting (XSS) vulnerability in /panel/configuration/financial/ of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into several fields: 'Minimum deposit’, ‘Maximum deposit’ and/or 'Maximum balance’.

1 year ago

#xss #vulnerability #web #git

Subrion CMS XSS in /panel/configuration/financial/

Moderate severity GitHub Reviewed Published Sep 27, 2023 to the GitHub Advisory Database • Updated Sep 27, 2023

Related news

CVE-2023-43830: GitHub - al3zx/xss_financial_subrion_4.2.1: XSS in financial page in Subrion 4.2.1

A Cross-site scripting (XSS) vulnerability in /panel/configuration/financial/ of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into several fields: 'Minimum deposit', 'Maximum deposit' and/or 'Maximum balance'.

1 year ago

#xss #vulnerability #web #git #auth

ghsa: Latest News

GHSA-7m27-7ghc-44w9: Next.js Allows a Denial of Service (DoS) with Server Actions

1 day ago

GHSA-q9jv-mm3r-j47r: PhpSpreadsheet allows bypass XSS sanitizer using the javascript protocol and special characters

1 day ago

GHSA-hwcp-2h35-p66w: PhpSpreadsheet has a Cross-Site Scripting (XSS) vulnerability of the hyperlink base in the HTML page header

1 day ago

GHSA-wv23-996v-q229: PhpSpreadsheet has a Cross-Site Scripting (XSS) vulnerability in custom properties

1 day ago

GHSA-j2xg-cjcx-4677: PhpSpreadsheet allows unauthorized Reflected XSS in Currency.php file

1 day ago