CVSS: 4.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-51506
https://notcve.org/view.php?id=CVE-2024-51506
Tiki through 27.0 allows users who have certain permissions to insert a "Create a Wiki Pages" stored XSS payload in the description. • https://github.com/r0ck3t1973/xss_payload/issues/8 https://security.tiki.org/Disclose-a-Vulnerability • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-51507
https://notcve.org/view.php?id=CVE-2024-51507
Tiki through 27.0 allows users who have certain permissions to insert a "Create/Edit External Wiki" stored XSS payload in the Name. • https://github.com/r0ck3t1973/xss_payload/issues/9 https://security.tiki.org/Disclose-a-Vulnerability • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-51508
https://notcve.org/view.php?id=CVE-2024-51508
Tiki through 27.0 allows users who have certain permissions to insert a "Create/Edit External Wiki" stored XSS payload in the Index. • https://github.com/r0ck3t1973/xss_payload/issues/9 https://security.tiki.org/Disclose-a-Vulnerability • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-51509
https://notcve.org/view.php?id=CVE-2024-51509
Tiki through 27.0 allows users who have certain permissions to insert a "Modules" (aka tiki-admin_modules.php) stored XSS payload in the Name. • https://github.com/r0ck3t1973/xss_payload/issues/10 https://security.tiki.org/Disclose-a-Vulnerability • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-10419 – code-projects Blood Bank Management System bloodrequest.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-10419
The manipulation of the argument msg leads to cross site scripting. ... Durch Manipulieren des Arguments msg mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. • https://code-projects.org https://gist.github.com/higordiego/62ad5208270c67834d02818d6ba44126 https://vuldb.com/?ctiid.281960 https://vuldb.com/?id.281960 https://vuldb.com/?submit.431784 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •