Bug Finder Listplace Directory Listing Platform 3.0
Approved changes feed: RSS · Atom
cpe:2.3:a:bugfinder:listplace_directory_listing_platform:3.0:*:*:*:*:*:*:*
part: a version: 3.0 update: *
| Vendor | Bugfinder (a133052e-4b2e-52c2-b7cb-2d96f14f9ce7) |
|---|---|
| Product | Listplace Directory Listing Platform (be24a132-7b78-56a3-b94a-883c7c9fa0b3) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-3828 |
vulnerable | 2026-06-08 06:09:40.663115 |
Bug Finder Listplace Directory Listing Platform Photo coverPhotoUpdate cross site scripting
LOW (3.5)
A vulnerability was found in Bug Finder Listplace Directory Listing Platform 3.0. It has been classified as problematic. This affects an unknown part of the file /listplace/user/coverPhotoUpdate of the component Photo Handler. The manipulation of the argument user_cover_photo leads to cross site scripting. It is possible to initiate the attack remotely. The identifier VDB-235149 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2023-07-22T10:31:03.335Z
Updated: 2024-08-02T07:08:50.237Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3827 |
vulnerable | 2026-06-08 06:09:40.662488 |
Bug Finder Listplace Directory Listing Platform HTTP POST Request create cross site scripting
LOW (3.5)
A vulnerability was found in Bug Finder Listplace Directory Listing Platform 3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /listplace/user/ticket/create of the component HTTP POST Request Handler. The manipulation of the argument message leads to cross site scripting. The attack may be launched remotely. The identifier of this vulnerability is VDB-235148. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2023-07-22T09:00:05.183Z
Updated: 2024-08-02T07:08:50.577Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.