CVE-2023-37257

DataEase cross-site scripting | CVE-2023-37257

July 27, 2023

NAME__________DataEase cross-site scriptingPlatforms Affected:DataEase DataEase 1.18.6 DataEase DataEase 1.18.7 DataEase DataEase 1.18.8Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________DataEase is vulnerable to cross-site scripting,...

HackerOne Bug Bounty Disclosure: sql-injection-in-url-path-leads-to-database-access-tinopreter

January 8, 2025

HackerOne Bug Bounty Disclosure: otp-code-leaked-in-api-response-tinopreter

January 8, 2025

HackerOne Bug Bounty Disclosure: yet-another-otp-code-leaked-in-the-api-response-tinopreter

January 8, 2025

[AKIRA] – Ransomware Victim: Press Color

January 8, 2025

CVE Alert: CVE-2024-12430

January 8, 2025

DataEase cross-site scripting | CVE-2023-37257

You may have missed

HackerOne Bug Bounty Disclosure: sql-injection-in-url-path-leads-to-database-access-tinopreter

HackerOne Bug Bounty Disclosure: otp-code-leaked-in-api-response-tinopreter

HackerOne Bug Bounty Disclosure: yet-another-otp-code-leaked-in-the-api-response-tinopreter

[AKIRA] – Ransomware Victim: Press Color

CVE Alert: CVE-2024-12430