Filtered by vendor Laborator Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-24075 1 Laborator 1 Kalium 2024-11-21 6.1 Medium
Cross Site Scripting (XSS) vulnerability in Name Input Field in Contact Us form in Laborator Kalium before 3.0.4, allows remote attackers to execute arbitrary code.
CVE-2020-23576 1 Laborator 1 Neon 2024-11-21 5.4 Medium
Laborator Neon dashboard v3 is affected by stored Cross Site Scripting (XSS) via the chat tab.
CVE-2020-14010 1 Laborator 1 Xenon 2024-11-21 6.1 Medium
The Laborator Xenon theme 1.3 for WordPress allows Reflected XSS via the data/typeahead-generate.php q (aka name) parameter.
CVE-2020-13890 1 Laborator 1 Neon 2024-11-21 5.4 Medium
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard.
CVE-2019-20141 1 Laborator 1 Neon 2024-11-21 6.1 Medium
An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPress via the data/autosuggest-remote.php q parameter.