CVE-2022-4105 - Exploiting Stored XSS and HTML Injection in Kiwi Test Plan for Clickjacking Attacks
CVE-2022-4105 is a serious vulnerability found in Kiwi TCMS, a popular open-source test management system. Attackers can use a _stored Cross-Site Scripting (XSS)_ bug to
CVE-2022-43117 - Multiple XSS Flaws in Sourcecodester Password Storage Application (PHP/OOP and MySQL 1.) – Simple Guide, Exploitation & Code Example
In late 2022, a set of cross-site scripting (XSS) vulnerabilities under the identifier CVE-2022-43117 were discovered in the popular open source Sourcecodester Password Storage Application
CVE-2022-38146 - Simple XSS in Silverstripe (silverstripe/framework ≤ 4.11) - Explained With Example
Silverstripe is a popular open source CMS and web framework written in PHP. But, like many web applications, it’s not immune to security issues—
CVE-2022-45470 - How Missing Input Validation in Apache Hama Leads to Information Disclosure (Path Traversal & XSS Explained)
In late 2022, a significant vulnerability CVE-2022-45470 was discovered in Apache Hama. This issue is particularly interesting because it revolves around classic web security pitfalls:
CVE-2022-40470 - How a Simple Cross-Site Scripting (XSS) Flaw in PHPGurukul’s Blood Donor Management System Opened the Door to Attacks
In October 2022, a significant security flaw was discovered in the Blood Donor Management System 1., a popular open-source web application developed by PHPGurukul. This
Episode
00:00:00
00:00:00