XSS - CVE CyberSecurity Database News (Page 31)

CVE-2024-38222 - Exposing Sensitive Data via Microsoft Edge (Chromium) Information Disclosure Vulnerability

Sep 12, 2024 XSS Microsoft Exploit OAuth Google Chrome

CVE-2024-38222 - Exposing Sensitive Data via Microsoft Edge (Chromium) Information Disclosure Vulnerability

In June 2024, Microsoft published a security advisory for CVE-2024-38222, a newly discovered information disclosure vulnerability affecting Microsoft Edge, the Chromium-based edition. This vulnerability, if

Sep 10, 2024 XSS PHP

CVE-2024-44872 - Reflected XSS in moziloCMS v3. – Exploit Details & How to Stay Safe

moziloCMS is a lightweight content management system (CMS) that's easy to set up and use. However, a new security issue, CVE-2024-44872, was discovered

CVE-2024-8372 - How Improper [srcset] Sanitization in AngularJS Exposes Users to Content Spoofing

Sep 9, 2024 XSS Exploit

CVE-2024-8372 - How Improper [srcset] Sanitization in AngularJS Exposes Users to Content Spoofing

Published: June 2024 By: [YourName/Organization] Summary: A newly disclosed vulnerability, CVE-2024-8372, affects AngularJS versions 1.3.-rc.4 and above, exposing users to content

CVE-2024-45299 - Exploiting Improper JSON Escaping in alf.io's Admin Customization

Sep 6, 2024 XSS Exploit Java

CVE-2024-45299 - Exploiting Improper JSON Escaping in alf.io's Admin Customization

alf.io is a popular open source ticket reservation system, used by organizers for events like conferences, workshops, trade shows, and meetups. It's

Aug 21, 2024 CSRF XSS API Exploit

CVE-2024-21690 - High Severity Reflected XSS and CSRF Vulnerability in Atlassian Confluence Data Center and Server

A serious security issue — CVE-2024-21690 — exists in several versions of Atlassian Confluence Data Center and Server. This vulnerability combines Reflected Cross-Site Scripting (XSS) and Cross-Site