Search Results | AttackerKB

4 Total Results

Displaying 1-4 of 4

Attacker Value

Unknown

CVE-2023-49177

Disclosure Date: December 15, 2023 (last updated December 20, 2023)

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gilles Dumas which template file allows Reflected XSS.This issue affects which template file: from n/a through 4.9.0.

Attacker Value

Unknown

CVE-2023-45753

Disclosure Date: October 16, 2023 (last updated February 25, 2025)

Cross-Site Request Forgery (CSRF) vulnerability in Gilles Dumas which template file plugin <= 4.6.0 versions.

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2018-6605

Disclosure Date: February 05, 2018 (last updated November 26, 2024)

SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request.

Attacker Value

Unknown

CVE-2002-1411

Disclosure Date: April 11, 2003 (last updated February 22, 2025)

Directory traversal vulnerability in update.dpgs in Duma Photo Gallery System (DPGS) 0.99.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the id parameter.

4 Total Results

Displaying 1-4 of 4

Unknown

CVE-2023-49177

Unknown

CVE-2023-45753

Unknown

CVE-2018-6605

Unknown

CVE-2002-1411

Quick Cookie Notification