-
# Summary
A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Xinhu RockOA v2.6.3.
# Details
The XSS vulnerability originates from `/webmain/model/flow/flow.php`:
```
…
-
There are character sequences that would be understood as benign by most sanitisers that when they are passed through anchorme result in javascript execution.
I'll omit examples for obvious reasons,…
-
Levi, primeiramente parabens. O site ficou muito massa, mas uma dica que eu te dou é evitar o `innerHTML`, ele é muito vulnerável a ataques de XSS
E tambem é bacana colocar um `maxlength` no input,…
-
Snyk is reporting a medium-risk XSS vulnerability through dependency `railroad-diagrams`.
-
### Is there an existing issue for the same bug?
- [x] I have checked the existing issues.
### Branch name
main
### Commit ID
4c14760
### Other environment information
```Markdown…
-
### Description
The `X-XSS-Protection` response header is currently by default set to `1; mode=block` for a fresh setup of a realm.
The browser functionality corresponding to this header is deprec…
-
-
# Summary
A Reflected Cross-Site Scripting (XSS) vulnerability has been discovered in PHPVOD v4.0,and is found in `/phpvod/module/video/extension/upload/server/view/admin/view.php`
# Details
The vu…
-
# Summary
StrongShop v1.0 has a Reflective Cross-Site Scripting (XSS) vulnerability located in the file `resources/views/admin/product/spec/index.blade.php`.
# Details
The vulnerability is located …
-
A stored cross-site scripting (XSS) vulnerability exists in ResidenceCMS 2.10.1 that allows a low-privilege user to create malicious property content with HTML inside it, which acts as a stored XSS pa…