Autore: Angelo Barbosa

A vulnerability was found in ProcessMaker up to 3.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Cookie Handler. The manipulation of the argument pm_sys_sys leads to cross site scripting. This vulnerability is known as CVE-2024-25506. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability was found in Technicolor TC8715D 01.EF.04.38.00-180405-S-FF9-D. It has been classified as problematic. Affected is an unknown function of the file dyn_dns.asp. The manipulation of the argument User name leads to cross site scripting. This vulnerability is traded as CVE-2024-28090. The attack needs to be approached within the local network. There is no exploit...

A vulnerability was found in Technicolor TC8715D 01.EF.04.38.00-180405-S-FF9-D RSE-TC8717T and classified as problematic. This issue affects some unknown processing of the file managed_services_add.asp of the component User Defined Service. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-28091. Access to the local network is required for this attack to succeed. There is no exploit...

A vulnerability has been found in 130+ Widgets Plugin up to 1.4.2 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-2250. The attack can be initiated remotely. There is no exploit...

A vulnerability, which was classified as problematic, was found in OceanWP Plugin up to 3.5.4 on WordPress. This affects an unknown part. The manipulation leads to file inclusion. This vulnerability is uniquely identified as CVE-2024-2476. The attack needs to be initiated within the local network. There is no exploit...