Laborator: Security Vulnerabilities
Cross Site Scripting (XSS) vulnerability in Name Input Field in Contact Us form in Laborator Kalium before 3.0.4, allows remote attackers to execute arbitrary code.
CVSS Score
6.1
EPSS Score
0.003
Published
2023-08-11
Laborator Neon dashboard v3 is affected by stored Cross Site Scripting (XSS) via the chat tab.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-08-27
The Laborator Xenon theme 1.3 for WordPress allows Reflected XSS via the data/typeahead-generate.php q (aka name) parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-06-10
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-06-06
An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPress via the data/autosuggest-remote.php q parameter.
CVSS Score
6.1
EPSS Score
0.125
Published
2019-12-30