CVE-2022-50969 | uBidAuction 2.0.1 GET manage filter date_created/date_from/date_to/created_at cross site scripting (Exploit 50693 / EDB-50693)

Inserito da Angelo Barbosa | Mag 10, 2026 | CVE

A vulnerability identified as problematic has been detected in uBidAuction 2.0.1. Affected by this issue is the function filter of the file backend/mailingLog/manage of the component GET Handler. This manipulation of the argument date_created/date_from/date_to/created_at causes cross site scripting.

The identification of this vulnerability is CVE-2022-50969. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2022-50969 | uBidAuction 2.0.1 GET manage filter date_created/date_from/date_to/created_at cross site scripting (Exploit 50693 / EDB-50693)

Post correlati

CVE-2023-7198 | WP Dashboard Notes Plugin up to 1.0.10 on WordPress post_id authorization

CVE-2024-6967 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 id sql injection

CVE-2024-20719 | Adobe Commerce cross site scripting (apsb24-03)

CVE-2021-47528 | Linux Kernel up to 5.15.6 usb cdnsp_endpoint_init null pointer dereference (7d94bc8e335c/37307f7020ab)