Ubuntu Security Notice 4896-2 - USN-4896-1 fixed a vulnerability in lxml. This update provides the corresponding update for Ubuntu 14.04 ESM. It was discovered that lxml incorrectly handled certain HTML attributes. A remote attacker could possibly use this issue to perform cross-site scripting attacks. Various other issues were also addressed.
e4f2f008e2cdcc1460a0b818e3b91206
CMSimple version 5.2 suffers from a persistent cross site scripting vulnerability.
354482644f988f2d741a7f3bfad57674
Composr CMS version 10.0.36 suffers from a cross site scripting vulnerability.
7557702ccddf1edf3bec1d21a0ca5250
Atlassian Jira Service Desk version 4.9.1 suffers from a cross site scripting vulnerability via a file upload.
840e289057a75abee3ebef734b12ec0a
Simple Traffic Offense System version 1.0 suffers from a persistent cross site scripting vulnerability.
c0765890ba077d7218f2533e8198df78
School Registration and Fee System version 1.0 suffers from persistent cross site scripting vulnerabilities.
798bee95d57d77d1e00e72e66cb8c083
Company Crime Tracking Software version 1.0 suffers from a persistent cross site scripting vulnerability.
38b46c6d01aa66cf4ed8d3c2193f1e65
CourseMS version 2.1 suffers from a persistent cross site scripting vulnerability.
c6d92d8ff1b03a63ccbba251393b4281
Ubuntu Security Notice 4896-1 - It was discovered that lxml incorrectly handled certain HTML attributes. A remote attacker could possibly use this issue to perform cross-site scripting attacks.
c33ea5822b285f067c1e517b1590672f
Zabbix version 3.4.7 suffers from a persistent cross site scripting vulnerability.
9b37595af3105ebb1bdbfb86a4f60c5b
Ubuntu Security Notice 4894-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.
4e22d60fd6aa436f1afcb95822fbbce6
Openlitespeed version 1.7.9 suffers from a persistent cross site scripting vulnerability.
6dc06af1789663052f7caf5e61f7ea30
GetSimple CMS version 3.3.16 cross site scripting to remote shell upload exploit.
3c1d773d613339fb004324bead97e042
Health Center Patient Record Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
3855b7fc762d994f96b15b4c8ce1b27a
Budget Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
9494b144431d8c40e78ac14f9e550993
Equipment Inventory System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
b7b8ed83bdf65794cf25f59d91b295d9
Apple Security Advisory 2021-03-26-3 - watchOS 7.3.3 addresses a cross site scripting vulnerability.
6d5ee4fd808cd04e54d5ac1dece8156a
Apple Security Advisory 2021-03-26-2 - iOS 12.5.2 addresses a cross site scripting vulnerability.
92e0cb5133e5e8ecb6931d5522ec5393
Apple Security Advisory 2021-03-26-1 - iOS 14.4.2 and iPadOS 14.4.2 addresses a cross site scripting vulnerability.
a24404039fa9cf5fc55928412c9d7017
Concrete5 version 8.5.4 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version is attributed to nu11secur1ty in March of 2021.
355e3f299bb2c3071c20327fb0ee81ea
Id Card Generator version 1.0 suffers from multiple cross site scripting vulnerabilities.
f28ea598bf9a391524ad5a07e3d3ecbc
Moodle version 3.10.3 suffers from a persistent cross site scripting vulnerability.
64f802d67fc0cafd7db44aee13b8f525
Multiple TP-Link devices suffer from an unauthenticated persistent cross site scripting vulnerability. Affected models include TD-W9977, TL-WA801ND, TL-WA801N, TL-WR802N, and Archer-C3150.
1da398afccf3fc2ba6162181e5e7b91a
Regis Inventory and Monitoring System version 1.0 suffers from a persistent cross site scripting vulnerability.
30e44f2274c24ec54e4e4aa7dda37d07
GetSimple CMS Custom JS plugin version 0.1 suffers from cross site request forgery and cross site scripting vulnerabilities.
0274807889f69e5cd2d483307e8a0a7e