EUVD-2008-0107

Malware in sbrugna...

EUVD-2025-10629

Malicious code in bioql PyPI...

CVE-2025-31390

Cross-Site Request Forgery CSRF vulnerability in bdoga Social Crowd social-crowd allows Stored XSS.This issue affects Social Crowd: from n/a through = 0.9.6.1...

WordPress plugin Social Crowd 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

Cross site request forgery (csrf)

A vulnerability was found in meitar Inline Google Spreadsheet Viewer Plugin up to 0.9.6 on WordPress and classified as problematic. Affected by this issue is the function displayShortcode of the file inline-gdocs-viewer.php. The manipulation leads to cross-site request forgery. The attack may be...

Fedora 16 : maniadrive-1.2-32.fc16.6 / php-5.3.14-1.fc16 / php-eaccelerator-0.9.6.1-9.fc16.6 (2012-9762)

The PHP development team would like to announce the immediate availability of PHP 5.3.14. All users of PHP are encouraged to upgrade to PHP 5.3.14. The release fixes multiple security issues: A weakness in the DES implementation of crypt and a heap overflow issue in the phar extension. PHP 5.3.14...

Fedora 16 : maniadrive-1.2-32.fc16.2 / php-5.3.10-1.fc16 / php-eaccelerator-0.9.6.1-9.fc16.2 (2012-1262)

This update has the latest release of PHP, 5.3.10, which fixes a security issue. A previous security fix introduced in PHP 5.3.9 allowed a remote user to crash the PHP interpreter, or possibly execute arbitrary code. CVE-2012-0830 Note that Tenable Network Security has extracted the preceding...

Fedora Update for php-eaccelerator FEDORA-2012-0420

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2008-7243

MODx CMS 0.9.6.1 and 0.9.6.1p1 are affected by a CSRF vulnerability (CVE-2008-7243) that allows remote attackers to hijack the authentication of other users for requests that modify passwords via manager/index.php. Technical details are limited in the provided documents; the description specifies...

CVE-2007-6660

2z project 0.9.6.1 allows remote attackers to obtain sensitive information via 1 a request to index.php with an invalid template or 2 a request to the default URI with certain year and month parameters, which reveals the path in various error messages...

MODx 0.9.6.1 - 'htcmime.php' Source Code Information Disclosure

source: https://www.securityfocus.com/bid/27096/info MODx is prone to a vulnerability that allows attackers to access source code because the application fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable syst...

2zproject-multi.txt

Digital Security Research Group DSecRG Advisory Name: 2z project Systems Affected: 2z project 0.9.6.1 Vendor URL: http://2z-project.ru Authors: Alexandr Polyakov, Stas Svistunovich Digital Security Reasearch Group DSecRG research at dsec dot ru Reported: 27.12.2007 Vendor response: 27.12.2007 Dat...