A malicious user with the ability to create a FRS release could force a victim having write permissions in the FRS to execute uncontrolled code. Prior to version 15.2.99.103 or Tuleap Community Edition and prior to versions 15.2-4 and 15.1-8 of Tuleap Enterprise Edition, the name of the releases are not properly escaped on the edition page of a release. Tuleap is an open source suite to improve management of software developments and collaboration. Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Labs64 Credit Tracker allows Stored XSS.This issue affects Credit Tracker: from n/a through 1.1.17. ![]() VDB-240914 is the identifier assigned to this vulnerability. The exploit has been disclosed to the public and may be used. The manipulation of the argument category_name leads to cross site scripting. Affected by this issue is some unknown functionality of the file add_category.php of the component Category Handler. A weakness in the sandbox allows a maliciously-crafted file to execute code outside the sandbox if the tracker-extract process has first been compromised by a separate vulnerability.Ī vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. VDB-242146 is the identifier assigned to this vulnerability.Ī flaw was found in the tracker-miners package. The manipulation of the argument page leads to cross site scripting. This vulnerability affects unknown code of the file index.php. A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |