Spotweb 漏洞列表
共找到 7 个与 Spotweb 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2021-40968: Spotweb <= 1.5.1 - Cross Site Scripting POC
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the newpassword2 parameter. -
CVE-2021-40969: Spotweb <= 1.5.1 - Cross Site Scripting (Reflected) POC
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the firstname parameter. -
CVE-2021-40970: Spotweb <= 1.5.1 - Cross Site Scripting POC
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the username parameter. -
CVE-2021-40971: Spotweb <= 1.5.1 - Cross Site Scripting POC
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the newpassword1 parameter. -
CVE-2021-40972: Spotweb <= 1.5.1 - Cross Site Scripting POC
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the mail parameter. -
CVE-2021-40973: Spotweb <= 1.5.1 - Cross Site Scripting POC
Cross-site scripting (XSS) vulnerability in templates/installer/step-004.inc.php in spotweb 1.5.1 and below allow remote attackers to inject arbitrary web script or HTML via the lastname parameter. -
CVE-2021-43725: Spotweb <= 1.5.1 - Cross Site Scripting (Reflected) POC
There is a Cross Site Scripting (XSS) vulnerability in SpotPage_login.php of Spotweb 1.5.1 and below, which allows remote attackers to inject arbitrary web script or HTML via the data[performredirect] parameter.