In Simple Online Book Store System 1.0 in /admin_book.php the Title, Author, and Description parameters are vulnerable to Cross Site Scripting(XSS).

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    
    *   Explore
    *   All features
    *   Documentation
    *   GitHub Skills
    *   Changelog
    
*   *   By Size
    *   Enterprise
    *   Teams
    *   Compare all
    
    *   By Solution
    *   CI/CD & Automation
    *   DevOps
    *   DevSecOps
    
    *   Case Studies
    *   Customer Stories
    *   Resources
    
*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
    *   Repositories
    *   Topics
    *   Trending
    *   Collections
    
*   Pricing

CVE-2022-37796: CVE_demo/Simple Online Book Store-XSS.md at main · anx0ing/CVE_demo

SysAid Help Desk before 22.1.65 allows XSS via the Asset Dashboard, aka FR# 67262.

*   Updated on 28 Jul 2022
*   5 Minutes to read

*   Print
    
*   Share
    
*   Dark
    
    Light
    

**GA June 6, 2022****Feature Requests**

**FR#**

**Description**

**Module/Tool**

52960

Reports generated in Excel are now exported in XLSX format for better experience and support of extra-large files.

Analytics

54161

Improved Patch Management implementation mechanism to resolve Apache HTTPD vulnerability errors. (This also covers FR# 58032.)

Patch Management

52260

Admins can map CI Fields to the Owner Group field when importing CIs into SysAid’s CMDB.

CMDB

64356

Created a new ‘$ReopenSR-requires\_login’ tag for ticket notifications.  
Using this tag will verify that the user who clicked the link is logged in to SysAid and update the SR as needed.

Help Desk

51918

A new check box in the Escalation Rules form allows admins to set reminders on action items.  
Configuration requires using custom user fields and action items dependencies.

Help Desk

53457

Admins can filter columns in the routing rules list by specific values.

Help Desk

60457

We added two new variable tags that can be added to ticket notifications in both the recipient field and the body of the notification:

*   $RequestUserManager – The direct manager of the ticket’s request user.
*   $AIAssigneeDirectManager – The direct manager of the user assigned to the action item.

Help Desk

66409

Improved performance in loading the Self-Service Portal in different sections: Catalogue items, FAQs, new ticket and category display and drop downs.  
This addresses bugs 65724, 60463, and 54442 as well.

Self-Service Portal

53656

Admins can define how many tickets are displayed in the Self-Service Portal scoreboard page when the end-user clicks Show All.

Self-Service Portal

60979

Improved performance around the loading of tickets in the scoreboard for a better customer experience.

Self-Service Portal

66129

Added validation when end-users self-registered for the Self-Service Portal.

Self-Service Portal

67236

Removed capability to import and export knowledge base articles to and from the SysAid Community in preparation for the relaunch of the community.

Knowledge Base

65579

Tightened security around potential XSS vulnerabilities (also covers bug #66542).

Security

65584

Tightened security around changing password capability on the My Settings page.

Security

67238

Removed or restricted access to certain vulnerable files on the SysAid server. This also covers FR #67237

Security

67241

Tightened security against potential XSS (cross-site scripting) attacks in the Password Services module.

Security

67258

Tightened security against potential XSS (cross-site scripting) attacks via the Linked SRs field.

Security

67262

Tightened security against potential XSS (cross-site scripting) attacks in the Asset Dashboard.

Security

66686

Added validation of file types when attachments are uploaded to SysAid. See list of supported file types here.

Security

52825

Admins can now sort the Asset list by the Last Access Time column in ascending or descending order.

Asset Management

64635

Changes were made to the Microsoft Azure interface. We updated the online help for the O365 integration to include the needed configuration changes.

Third-Party Integration

65264

Updated our documentation for setting up the OneLogin SSO integration in response to changes in OneLogin’s requirements.

Third-Party Integration

61365

Tightened security around access to LDAP Imported users via the API. This covers CVE-2021-36721.

Security

66686 (\*)

Added validation of file types when attachments are uploaded to SysAid. See list of supported file types here. This covers CVE-2021-22796.

Security

66692

Tightened security around access for non-admin users. This covers CVE-2022-22798.

Security

67656

Tightened security against potential Cross-Site Scripting (XSS) attacks. This covers CVE-2022-23165. This also covers FR #5209.

Security

67655

Tightened security around access to vulnerable files in the SysAid server.  
This covers CVE-2022-23166.

Security

66687

Resolved vulnerabilities related to Apache Tomcat.

Security

**Bug Fixes**

**Bug #**

**Description**

**Module/Tool**

61655

Fixed a bug that caused an empty list page to open when admins clicked on the Highest Values graph in the Dashboard.

Analytics

64779

Fixed a bug that caused SysAid to create duplicate asset records when the asset ID generated by the SysAid agent consisted of only one digit.

Asset Management

57188

Fixed a bug that prevented SysAid from displaying changes to an admin’s Company, Location, and Department fields on an asset that was automatically assigned to that admin.

Asset Management

66131

Fixed a bug that generated errors when an admin attempted to import Chromebook devices that were missing an Auto-update expiration date.

Asset Management

64125

Fixed a bug that caused a timeout when admins tried exporting the list of assets that were using a software product.

Asset Management

52731

Fixed a bug that prevented SysAid from properly displaying graphs in the dashboard when the dashboard headers contained certain special characters.

Dashboard

65798

Fixed a bug that sometimes caused timeouts when SysAid was loading the email rules page.

Email Integration

66132

Fixed a bug that caused SysAid to ignore certain user parameters in routing rules on tickets generated via email, when email integration was configured with OAuth 2.0 protocol.

Email Integration

65798

Fixed a bug that sometimes caused timeouts when SysAid was loading the email rules page.

Email Integration

65211

Fixed a bug that sometimes prevented admins from changing the order of routing rules.

Help Desk

65409

Fixed a bug that caused escalation rules to run outside of the defined operating hours.

Help Desk

66388

Fixed a bug that sometimes prevented users from logging in to the Mobile solution after they had logged out.

Mobile

65757

Fixed a bug that prevented the Self-Service Portal from displaying the profile menu when it was opened via the hotkey.

Self Service Portal

64572

Fixed a bug that caused the agent hotkey to open the now deprecated End-User Portal when the Self-Service Portal was disabled in that account.

Self Service Portal

65199

Fixed a bug that prevented end users from automatically downloading the ticket attachment after login to the Self-Service Portal, when they click on the ‘${LinkToAttachments}’ tag in a ticket email notification.

Self Service Portal

65353

Fixed a bug that sometimes caused content generated by category pointers from appearing in the service catalog.

Self Service Portal

65363

Fixed a bug that sometimes generated an error when admins tried to populate data in a workflow template with many action items.

Service Desk

63121

Fixed a bug that prevented the Self-Service Portal’s Scoreboard from displaying any items in the full Workflow Actions list when one of the workflow actions on the list had been deleted from its template.

Service Desk

64086

Fixed a bug that prevented SysAid from sending emails with attachments larger than 3MB when email integration was configured for O365 using the Oauth 2.0 protocol.

Third-Party Integration

66123

Fixed a bug that caused the ‘Can be assigned to service record’ setting to be reverted to its default for Azure-imported user groups when SysAid synced with Azure.

Third-Party Integration

66620

Fixed a bug that prevented Azure-imported admins from seeing tickets assigned to their group.

Third-Party Integration

65590

Added the capability to remove configurations in the Multi SSO Connector setup page, along with other minor UI updates.

Third-Party Integration

65802

Fixed a bug that prevented admins from changing the HTML displayed in their login screen for the SSO Connector add-on.

Third-Party Integration

57227

Fixed a bug that caused users who were demoted from admin to end user to maintain some of their original admin permissions.

User Management

Was this article helpful?

CVE-2022-40325: 22.1.65 Release Notes - On-Premises Releases

Input passed to the GET parameter 'action' is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in context of an affected site.

Title: ETAP Safety Manager 1.0.0.32 Remote Unauthenticated Reflected XSS  
Advisory ID: ZSL-2022-5711  
Type: Local/Remote  
Impact: Cross-Site Scripting  
Risk: (4/5)  
Release Date: 11.09.2022

**Summary**

The ETAP Safety Manager (ESM) is a central managing and control system that helps you to monitor, adjust and maintain your emergency lighting system. Therefore each luminaire connected to your ESM network is given a unique code. The ESM can easily identify the luminaires individually and automatically report whether all luminaires work properly. You can either choose between a wired or wireless network, or a combination of both. With ESM you will not only manage your self contained or your centrally supplied ‘ETAP Battery System’ (EBS) emergency luminaires’, but also DALI emergency units and K9 LED modules, which you can build into your luminaires. Since your ESM system is connected to the Internet, you will always have access to it through the World Wide Web. ESMweb™ is an ‘embedded web server’ application for monitoring an emergency lighting system, which runs in the ‘ESM web controller’. The ESMweb™ application can be accessed from any PC in the corporate network or connected to the Internet - by a standard web browser.

**Description**

Input passed to the GET parameter 'action' is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML/JS code in a user's browser session in context of an affected site.

**Vendor**

ETAP Lighting International NV - https://www.etaplighting.com

**Affected Version**

1.0.0.32

**Tested On**

Apache/2.4.41 (Ubuntu)

**Vendor Status**

N/A

**PoC**

etap\_xss.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[11.09.2022\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

ETAP Safety Manager 1.0.0.32 Remote Unauthenticated Reflected XSS

A cross-site scripting (XSS) vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field.

**Markdown-Nice v1.8.22 vulnerable to Cross-site Scripting**

Moderate severity GitHub Reviewed Published Sep 10, 2022 • Updated Sep 15, 2022

GHSA-462r-wxvm-jvxh: Markdown-Nice v1.8.22 vulnerable to Cross-site Scripting

New issue

**Have a question about this project?** Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Assignees

Labels

bug

Something isn't working

CVE-2022-38639: markdown preview executes the xss Vulnerability · Issue #327 · mdnice/markdown-nice

OpenKM 6.3.11 allows stored XSS related to the javascript&colon; substring in an A element.

**Have a question about this project?** Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Pick a username

Email Address

Password

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CVE-2022-40317: Reported XSS vulnerability by monkiki · Pull Request #336 · openkm/document-management-system

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.9 are vulnerable to HTTP header injection, caused by improper validation. This could allow an attacker to conduct various attacks against the vulnerable system, including cache poisoning and cross-site scripting.  IBM X-Force ID:  229429.

CVE-2022-34165: IBM WebSphere Application Server HTTP injection CVE-2022-34165 Vulnerability Report

mbDrive Lite WiFi Flash Disk version 1.4.0 suffers from a cross site scripting vulnerability.

Change Mirror Download

    # Exploit Title: mbDrive Lite - WiFi flash disk 1.4.0 Reflected XSS# Date: Sep 8, 2022# Exploit Author: Chokri Hammedi# Vendor Homepage:https://apps.apple.com/us/developer/haw-yuan-yang/id291212805# Software Link:https://apps.apple.com/us/app/mbdrive-lite-wifi-flash-disk/id343254033# Version: 1.4.0# Tested on: iPhone ios 15.6poc:http://192.168.1.187:8080/list?path=%3Cscript%3Ealert(%271%27);%3C/script%3E

mbDrive Lite WiFi Flash Disk 1.4.0 Cross Site Scripting

AirDisk version 7.5.5 suffers from a persistent cross site scripting vulnerability.

    # Exploit Title: AirDisk 7.5.5 File Manager Stored XSS# Date: Sep 8, 2022# Exploit Author: Chokri Hammedi# Vendor Homepage: https://apps.apple.com/us/developer/felix-yew/id505904424# Software Link:https://apps.apple.com/us/app/airdisk-file-manager/id566530748# Version: 7.5.5# Tested on: iPhone ios 15.61/ Starting the server ( File Transfer > Wi-fi File Transfer )2/ Go to browser3/ Enter the address showing on app eg: http://192.168.1.187:80804/ Create a folder with the name: rose'"><img src=xonerror=alert(document.location)>5/ Refresh.

AirDisk 7.5.5 Cross Site Scripting

Authenticated (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in Ali Khallad's Contact Form By Mega Forms plugin <= 1.2.4 at WordPress.

*   Details
*   Reviews
*   Support
*   Development

Mega Forms is highly advanced contact form builder for WordPress, it comes with all the contact form features you will ever need, including AJAX submission, multi-page contact forms, secure file uploads, conditional logic, save and continue, and tons more. You can use Mega Forms to save time, grow customer interaction, and build better contact forms for any purpose.

Mega Forms gives you a modern interface, easy customization, and the ability to build modern & professional forms thanks to our intuitive drag & drop visual editor.

Now you can create better forms, embed them anywhere on your WordPress website, get email notification for each submission, perform custom tasks, and collect & manage data without being a coding ninja.

Mega Forms contact forms are also highly optimized for web and server performance. We know how important speed is when it comes to SEO and user experience, that’s why we have built every piece of Mega Forms with performance and usability in mind. Mega Forms will load the least possible amount of CSS & JS assets, and only store necessary data to the database to keep your website fast and provide your users with better experience.

**No Coding Skills Required**

No technical skill? No problem. You can easily design simple and complex forms with our highly advanced visual builder. Mega Forms offers a flexible row/column layout system that requires very minimal effort to build forms that blends nicely with your website design.

**Developer Friendly**

Mega Forms has been built with developers in mind. This means it’s flexible, easily extendable, and full of action and filter hooks, making it easy to customize to your own needs.

**Top Features**

Mega Forms comes with a visual editor and ton of other features:

*   Intuitive user interface
*   Drag & drop form builder
*   Optimized for speed & performance
*   Tons of free field types ( text, select, radio, checkboxes and more )
*   Regular updates & dedicated support
*   Fully responsive & mobile friendly
*   Unlimited forms & form submission
*   Merge tags support
*   Multi-steps support
*   Conditional logic support
*   Export and import forms
*   Customizable templates
*   Full control ( styles, email templates, field templates and more )
*   Developer friendly
*   Highly effective Anti-spam system ( invisible to users )

**Does Mega Forms Have A Getting Started Guide**

We’re currently still working on building Mega Forms site, once completed, it will have a complete list of resources at https://wpmegaforms.com/

**Is There A Documentation For Developers**

We’re currently still working on building Mega Forms site, once completed, it will have a complete list of resources at https://wpmegaforms.com/

**Does It Work On All Devices**

Yes, Mega Forms is completely responsive and will display forms properly on all types of devices.

**Does It Include Spam Protection**

Yes, we are using a combination of Honeypot & Timetrap to make great spambot-proof forms. We have implemented these thwarting techniques in a way that makes them very effective in detecting and blocking spam submissions without annoying the real users.

**Can I Export & Import Forms**

Yes, you can easily export and import forms via the dedicated export/import tool in the admin area.

**What Field Types Does Mega Forms Offer**

Mega Forms comes with all the fields you need:

*   Text Field
*   Paragraph Text (Textarea)
*   Dropdown Field
*   Radio Buttons
*   Checkboxes
*   Number
*   Name
*   Email Address
*   Address
*   Phone
*   Password
*   Date
*   Website
*   Hidden
*   HTML ( HTML code )
*   Divider
*   Question
*   File Upload
*   Consent

Here is a list of the field types in progress:

*   Google ReCaptacha
*   Calculated Field
*   Star Rating
*   Rangle Slider
*   Toggle
*   Signature
*   Pricing ( field group )

Here is a list of the field containers in progress:

*   Repeatable Group
*   Tabs
*   Accordions

**What Actions Does Mega Forms Offer**

Mega Forms comes with the necessary actions by default:

*   Email Notification
*   WordPress Hook

Here is a list of actions in progress:

*   Google Spreadsheet
*   Integrations ( MailChimp, ActiveCampaign, ConvertKit, AWeber, Campaign Monitor…etc )
*   Webhooks
*   Front End Posting
*   Register User

**Is It Translation Ready**

Yes, Mega Forms has full translation and localization support via the ‘megaforms’ textdomain.

**What Features Are Coming Next**

We are in the process of building more features, here is a list:

*   Form Chaining
*   Export Entries into CSV
*   Tons Of Integrations
*   Payments
*   PDF Copy
*   Save And Continue Later
*   Advanced Stats

We don’t promise all of this will be available soon, but we promise we’ll do our best to ship these features as soon as we can.

Mega Forms is a great drag n drop contact form builder. It supports all form fields you need and has a multi-page form option.

This is a very useful plugin for creating simple forms in WordPress. It saves entries in DB which can be very useful. Form builder is simple with easy to understand UI. I hope it will get more features. Ability to export entries in .xlsx and .pdf would be great.

Simple and perfect plugin to create your form

Congratulations, I'm very happy to be the second one to publish a review for this great plugin.

I think it is a useful Plugin and We wait for more Featuresز Due to the WordPress Hook, I think it is good to explain it in your Plugin Page or URL to let the Users Know how to use it.. Best regards

Read all 5 reviews

“Contact Form By Mega Forms – Drag and Drop Form Builder” is open source software. The following people have contributed to this plugin.

Contributors

*    Ali Khallad

**1.0.0**

*   First release

**1.0.1**

*   Fixed bug ( error when saving forms without adding actions )

**1.0.2**

*   Fixed bugs ( Form editior not taking full screen size, admin area styling fixes..etc )
*   Added “Section” field
*   Added “Question” field ( mainly added to help with Spam prevention )
*   Added the possibility to make “Divider” field transparent ( maily to be used as a “spacer” when needed )
*   Corrected some spelling mistakes

**1.0.3**

*   Fixed bugs
*   Added option to disable saving entries on form submission ( usefull for updating user info..etc )
*   Implemented Anti-spam technique ( Honeypot trap )
*   Added shortcode processing feature to the HTML field

**1.0.4**

*   Fixed bugs ( honeypot issues, php errors on empty form submission, choices not saving in order after moving them around…etc )
*   Added Anti-spam technique ( timetrap )

**1.0.5**

*   Fixed bugs
*   Added pre-made forms feature ( you can now create form based on pre-made templates )

**1.0.6**

*   Fixed bugs ( Styling issues, repeated name attributes when using multiple forms on same page )
*   Improvements to the overall user experience
*   Improvements to the form editor design to allow more clarity while building and managing forms
*   Added more flexibility for developers to create fields, field options..etc
*   Added AJAX submission support
*   Added conditional logic

**1.0.7**

*   Improved: order and display of options in the edit field tab ( Form editor )
*   Fixed: duplicate field setting tabs not responding ( Form editor )
*   Fixed: AJAX form doesn’t respond after first submission
*   Fixed: “Maximum call stack size exceeded” JS error when deep conditional logic is implemented
*   Added: multi-step feature ( paged forms )
*   Added: file upload field

**1.0.8**

*   Styling fixes
*   form editor preview fixes ( wrong column width + wrong description position when typed the first time )
*   Fixed: form shortcode was returning as an empty string when called via AJAX
*   Fixed: AJAX validation was adding duplicate notices for choice fields (radios, checkboxes)
*   Fixed: bug in mfget_option function that mixes between false and non-existing setting values causing some of the true/false settings to have unexpected behavior
*   Added: Save and continue feature
*   Added: Consent field

**1.0.9**

*   Extended “One line text” and “Paragraph text” fields so that the user can view number of characters typed if the maximum length is set for these fields.
*   Added the ability to control field label visibility (show/hide)
*   Fixed bug: When duplicating a field in the form editor, the field values were not copied over to the new field
*   Fixed bug: When adding field tag in the form editor, the field preview didn’t update with the new field value because the change event is not triggered for that field

**1.1.0**

*   Fixed: emails were not being sent when there are multiple recipients

**1.1.1**

*   Performance optimization ( combined and minifed CSS & JS resources )
*   Improved conditional logic

**1.1.2**

*   Fix: a JS bug that prevents items from displaying in the single entry page
*   Fix: email header issues
*   Fix: conditional logic not working on compound fields
*   Improvement: Make phone & number fields display a keypad on mobile view instead of the default keyboard.

**1.1.3**

*   Update: include all PRO features in free version and drop the paid version ( Mega Forms with all PRO features is now free ).
*   Fix: a bug in the referrer column in entries table that prevents the creation of entries if the referrer is longer than 100 chars.

**1.1.4**

*   added filter hook “mf\_bypass\_session\_error” to allow bypassing session validation error ( usefull when cookies aren’t allowed/saved ).

**1.1.5**

*   Fix: form email action issues ( subject was empty by default, email not sending when the “from” field is not formatted correctly )
*   Fix: entries list display ( the list was showing all columns/fields by default which can cause unpleasant view for large forms)
*   Fix: fields order was based on ID order on different areas ( emails, entries, entry lists..etc ), this is corrected to show fields in the same order as they appear on the form.
*   Improved the “Change columns visibility” option design/display on the entries list page
*   Ensure that once an entry is deleted, all associated files will be deleted as well.
*   Added a link to download/view uploaded files in email notifications

**1.1.6**

*   Fix: bug in file field description ( removing file field description was not possible )
*   Added WordPress shortcodes support to the “default value” field
*   Fix: syntax error during activation

**1.1.7**

*   Added cookies compatibility with wpengine ( to prevent caching issues )
*   Fixed a bug with WP admin notices ( hiding notices outside the plugin’s pages )
*   Fixed a bug with the plugin’s admin snackbar ( not being loaded on some pages )

**1.1.8**

*   Bug fixes in the drag and drop uploads field ( inaccurate file count … )

**1.1.9**

*   Fix: a bug in “more options” selection in email action that only allows a single value to be saved
*   Fix: a bug making the filetype case-sensitive in upload field

**1.2.0**

*   Fix: a bug in checkbox option that is causing only the last selected value to be saved from a checkbox list in AJAX submissions
*   Fix: a bug in “form save” process that is causing only a single “form action” to be saved.

**1.2.1**

*   Fix: maintain the selected tab selected after page refresh ( admin settings )
*   Added: ability to export form entries

**1.2.2**

*   Changed Mega Forms session cookie prefix from “mf” to “wordpress\_mf” to ensure compatibility with caching plugins and hosting providers caching.
*   Fixed: CSS clearfix incompatibility with some theme which causing the layout of some fields to break ( eg; address field when error are displayed )
*   Fixed: Bug that prevented the “CSS Classes” value from being saved for form fields.

**1.2.3**

*   Styling fixes
*   Reduced resources ( CSS, JS ) size.

**1.2.4**

*   Add support to multisite

**1.2.5**

*   CSS Fixes
*   Fixed a XSS issue. Credit: ptsfence.

Tag

#xss