Common Vulnerabilities and Exposures

Reflected cross-site scripting in Kentico CMS allows attackers to execute scripts via crafted URLs

Cross-site scripting in OpenText Advanced Authentication (NetIQ) allows attackers to inject malicious scripts into web pages

SQL injection in OpenText Advanced Authentication (NetIQ) allows unauthenticated attackers to execute arbitrary SQL commands against the database

Reflected cross-site scripting in SoftCOM iKSORIS Internet Starter Module via additional parameter

Stored cross-site scripting in SoftCOM iKSORIS Internet Starter Module allows persistent script injection

Reflected cross-site scripting in SoftCOM iKSORIS Internet Starter Module via different injection point

Reflected cross-site scripting in SoftCOM iKSORIS Internet Starter Module allows attackers to execute scripts via crafted URLs

Reflected cross-site scripting in Palo Alto Networks PAN-OS GlobalProtect portal allows script execution via crafted URLs

Unauthenticated cross-site scripting in POST SMTP Mailer WordPress plugin allows script injection without authentication

Admin+ stored XSS in Bookly WordPress plugin allows administrators to inject persistent malicious scripts

Stored cross-site scripting in Kofax Capture software allows persistent malicious script injection

Reflected cross-site scripting in SAS 9.4 allows attackers to execute scripts via crafted URLs

Admin+ stored XSS in Easy Forms for Mailchimp WordPress plugin allows administrators to inject persistent scripts

Remote code execution via insecure deserialization in IBM i Access Client Solutions allows attackers to execute arbitrary code

Decryption key disclosure in IBM i Access Client Solutions allows local attackers to obtain encryption keys via improper authority checks