-
The following is a patch that can potentially address the XSS vulnerability of the request_account page:
Patch for `modules/login/templates/form_requestaccount.tpl`:
```
--- form_requestaccount.tpl (…
-
Hi there,
AuthAnalyzer is vulnerable to XSS when defining headers to add/replace. If you define a header as `X-Foo: ` and start the session, the tag will be rendered, and a GET request will be tri…
-
# CSP와 XSS테스트 코드 - yooDev
사이트 간 스크립팅, 크로스 사이트 스크립팅- CSP와 XSS테스트 코드
[https://yoo94.github.io/blog/XSS/](https://yoo94.github.io/blog/XSS/)
-
(This was previously reported as https://github.com/vega/vega-lite/issues/9469, but I was asked to file it here instead.)
The `filter` property of a vega-lite `select` parameter exposes the browser's…
-
-
Description: XSS in found on the subject attribute in the report user page
Details requested by TA are as below:
Account Used:
Username: test1_user
Password: 123123123.
Steps Followed:
(a)…
-
## Description
The `Link to Photo Album` input field does not properly sanitize user inputs.
This can lead to Cross-site Scripting (XSS).
As the HTTP service does not provide authentication, …
-
The changes in commit 703e2ca3c010b76c6af6260f1881869db97f17e9 introduces a risk of cross-site scripting (XSS) in the server message through the project wiki.
As the [Showdown documentation](https:…
-
-
https://www.cve.org/CVERecord?id=CVE-2024-33916