Cross-site Scripting (XSS) – Stored in Packagist microweber/microweber prior to 1.2.11. Date published : 2022-01-26 https://huntr.dev/bounties/933f94b8-c5e7-4c3a-92e0-4d1577d5fee6 https://github.com/microweber/microweber/commit/f017cbfbd5c4f097d2c78c5e15b6c8a9da479d7b
Cross-site Scripting (XSS) – Reflected in Packagist microweber/microweber prior to 1.2.11. Date published : 2022-01-26 https://huntr.dev/bounties/529b65c0-5be7-49d4-9419-f905b8153d31 https://github.com/microweber/microweber/commit/fc7e1a026735b93f0e0047700d08c44954fce9ce
Cross-site Scripting (XSS) – Stored in Packagist remdex/livehelperchat prior to 3.93v. Date published : 2022-01-26 https://huntr.dev/bounties/28e1c356-6eaa-4d93-af56-938e3b4d40a7 https://github.com/livehelperchat/livehelperchat/commit/bbfaa26ce54a2a86ce1a42a16496038f5bdfc102
Cross-site Scripting (XSS) – Stored in Packagist remdex/livehelperchat prior to 3.93v. Date published : 2022-01-26 https://huntr.dev/bounties/f8b560a6-aa19-4262-8ae4-cf88204310ef https://github.com/livehelperchat/livehelperchat/commit/bbfaa26ce54a2a86ce1a42a16496038f5bdfc102
Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. Date published : 2022-01-26 https://huntr.dev/bounties/bca9ce1f-400a-4bf9-9207-3f3187cb3fa9 https://github.com/vim/vim/commit/8d02ce1ed75d008c34a5c9aaa51b67cbb9d33baa
SQL Injection in Packagist showdoc/showdoc prior to 2.10.3. Date published : 2022-01-26 https://huntr.dev/bounties/e7c72417-eb8f-416c-8480-be76ac0a9091 https://github.com/star7th/showdoc/commit/2b34e267e4186125f99bfa420140634ad45801fb
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Date published : 2022-01-26 https://huntr.dev/bounties/a055618c-0311-409c-a78a-99477121965b https://github.com/vim/vim/commit/dc5490e2cbc8c16022a23b449b48c1bd0083f366
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Date published : 2022-01-26 https://huntr.dev/bounties/a3192d90-4f82-4a67-b7a6-37046cc88def https://github.com/vim/vim/commit/85b6747abc15a7a81086db31289cf1b8b17e6cb1
Cross-site Scripting (XSS) – Stored in GitHub repository pimcore/pimcore prior to 10.2.10. Date published : 2022-01-26 https://huntr.dev/bounties/eb4b08f9-cf8b-4335-b3b8-ed44e5fa80a5 https://github.com/pimcore/pimcore/commit/3ae96b9d41c117aafa45873ad10077d4b873a3cb
controller/org.controller/org.controller.js in the CVE Services API 1.1.1 before 5c50baf3bda28133a3bc90b854765a64fb538304 allows an organizational administrator to transfer a user account to an arbitrary new organization, and thereby achieve unintended access within the context of that new...
jpress 4.2.0 is vulnerable to remote code execution via io.jpress.module.article.kit.ArticleNotifyKit#doSendEmail. The admin panel provides a function through which attackers can edit the email templates and inject some malicious code. Date published : 2022-01-26 Home...