Aggregator

CVE-2006-5190 | osCommerce admin/orders_status.php page cross site scripting (EDB-28743 / XFDB-29355)

Vuldb Updates
2 months ago
A vulnerability, which was classified as problematic, was found in osCommerce. Affected by this vulnerability is an unknown functionality of the file admin/orders_status.php. The manipulation of the argument page results in basic cross site scripting. This vulnerability is cataloged as CVE-2006-5190. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2006-5190 | osCommerce products_attributes.php page cross site scripting (EDB-28743 / XFDB-29355)

Vuldb Updates
2 months ago
A vulnerability has been found in osCommerce and classified as problematic. Affected by this issue is some unknown functionality of the file admin/products_attributes.php. This manipulation of the argument page causes basic cross site scripting. This vulnerability is registered as CVE-2006-5190. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com

CVE-2006-5190 | osCommerce admin/reviews.php page cross site scripting (EDB-28743 / XFDB-29355)

Vuldb Updates
2 months ago
A vulnerability was found in osCommerce. It has been classified as problematic. This vulnerability affects unknown code of the file admin/reviews.php. Performing a manipulation of the argument page results in basic cross site scripting. This vulnerability is reported as CVE-2006-5190. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com

CVE-2006-5190 | osCommerce stats_products_purchased.php page cross site scripting (EDB-28743 / XFDB-29355)

Vuldb Updates
2 months ago
A vulnerability was found in osCommerce. It has been rated as problematic. Impacted is an unknown function of the file admin/stats_products_purchased.php. The manipulation of the argument page leads to basic cross site scripting. This vulnerability is traded as CVE-2006-5190. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2006-5190 | osCommerce stats_products_viewed.php page cross site scripting (EDB-28743 / XFDB-29355)

Vuldb Updates
2 months ago
A vulnerability categorized as problematic has been discovered in osCommerce. The affected element is an unknown function of the file admin/stats_products_viewed.php. The manipulation of the argument page results in basic cross site scripting. This vulnerability is known as CVE-2006-5190. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com

Malicious npm Package Turns Hugging Face Into Malware CDN and Exfiltration Backend

Cyber Security News
2 months ago

A rogue npm package named js-logger-pack has been caught quietly turning Hugging Face, a widely trusted AI model hosting platform, into both a malware delivery network and a stolen data storage backend. The campaign marks a clear shift in how attackers abuse legitimate cloud services to run supply chain attacks while staying hidden. The package appeared harmless […]

The post Malicious npm Package Turns Hugging Face Into Malware CDN and Exfiltration Backend appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2025-41011

CVE Trends
2 months ago
Currently trending CVE - Hype Score: 1 - HTML injection vulnerability in PHP Point of Sale v19.4. This vulnerability allows an attacker to render HTML in the victim's browser due to a lack of proper validation of user input by sending a request to '/reports/generate/specific_customer', ussing 'start_date_formatted' y ...

CVE-2025-2749

CVE Trends
2 months ago
Currently trending CVE - Hype Score: 1 - An authenticated remote code execution in Kentico Xperience allows authenticated users Staging Sync Server to upload arbitrary data to path relative locations. This results in path traversal and arbitrary file upload, including content that can be executed server side leading to ...

Managed ad