In LetterPress plugin <= 1.2.1 is vulnerable to Html Injection Vulnerability which can futher leads to Open Redirection Vulnerabilty.
-
Updated
Jan 30, 2024
In LetterPress plugin <= 1.2.1 is vulnerable to Html Injection Vulnerability which can futher leads to Open Redirection Vulnerabilty.
CVE-2019-10092: Limited Cross-Site Scripting in "Proxy Error" Page
Sherlock and Watson exploit check against Windows Exploit Suggester NG (WesNG)
CVE-2020-8249: Buffer Overflow in Pulse Secure VPN Linux Client
CVE-2020-12625: Cross-Site Scripting via Malicious HTML Attachment in Roundcube Webmail
In LetterPress plugin <= 1.2.1 is vulnerable to Cookie Stealing Vulnerability. An attacker can able to steal the cookies by injecting the JavaScript code.
Easy alerting of published vulnerabilities in the Red Hat Security Data API.
CVE-2022-24442: FreeMarker Server-Side Template Injection in JetBrains YouTrack
CVE-2021-46365: Unsafe XML Parsing in Magnolia CMS
Follow my cybersecurity journey as I explore CTF, Red Teaming, and Malware Analysis. Dive into challenges, insights, and discoveries.
CVE-2020-12641: Command Injection via “_im_convert_path” Parameter in Roundcube Webmail
Search for vulnerabilites in software or hardware and grab actionable CVE information.
CVE-2020-8250: Privilege Escalation via Command Injection in Pulse Secure VPN Linux Client
CVE-2022-20818: Local Privilege Escalation via Partial File Read in Cisco SD-WAN
CVE-2019-14678: XML External Entity in SAS XML Mapper
CVE-2020-13965: Cross-Site Scripting via Malicious XML Attachment in Roundcube Webmail
Add a description, image, and links to the cves topic page so that developers can more easily learn about it.
To associate your repository with the cves topic, visit your repo's landing page and select "manage topics."