‼ CVE-2021-41462 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in concrete/elements/collection_add.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the ctID parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40921 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in _contactform.inc.php in Detector 0.8.5 and below version allows remote attackers to inject arbitrary web script or HTML via the cid parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40925 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in dompdf/dompdf/www/demo.php infaveo-helpdesk v1.11.0 and below allow remote attackers to inject arbitrary web script or HTML via the $_SERVER["PHP_SELF"] parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40968 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the newpassword2 parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40975 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in application/modules/admin/views/ecommerce/products.php in Ecommerce-CodeIgniter-Bootstrap (Codeigniter 3.1.11, Bootstrap 3.3.7) allows remote attackers to inject arbitrary web script or HTML via the search_title parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40970 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the username parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40973 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the lastname parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40971 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the newpassword1 parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40923 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in install/index.php in bugs 1.8 and below version allows remote attackers to inject arbitrary web script or HTML via the email parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40927 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in callback.php in Spotify-for-Alfred 0.13.9 and below allows remote attackers to inject arbitrary web script or HTML via the error parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40928 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in index.php in FlexTV beta development version allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40969 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the firstname parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40926 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40972 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the mail parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40922 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in install/index.php in bugs 1.8 and below version allows remote attackers to inject arbitrary web script or HTML via the last_name parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-41464 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in concrete/elements/collection_add.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40924 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in install/index.php in bugs 1.8 and below version allows remote attackers to inject arbitrary web script or HTML via the first_name parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-41463 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in toos/permissions/dialogs/access/entity/types/group_combination.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the cID parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-41465 ‼
📖 Read
via "National Vulnerability Database".
Cross-site scripting (XSS) vulnerability in concrete/elements/collection_theme.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter.📖 Read
via "National Vulnerability Database".
🦿 Consumer privacy study finds online privacy is of growing concern to increasingly more people 🦿
📖 Read
via "Tech Republic".
The study, from Cisco, comes with the announcement of its New Trust Standard, a benchmark for seeing how trustworthy businesses are as they embrace digital transformation.📖 Read
via "Tech Republic".
🕴 4.6M Neiman Marcus Online Customers Alerted to Data Breach 🕴
📖 Read
via "Dark Reading".
The breach occurred in May 2020.📖 Read
via "Dark Reading".
Dark Reading
4.6M Neiman Marcus Online Customers Alerted to Data Breach
The breach occurred in May 2020.