CVE-2022-0379

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

EUVD-2026-0379

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2019-0379

SAP Process Integration, business-to-business add-on, versions 1.0, 2.0, does not perform authentication check properly when the default security provider is changed to BouncyCastle BC, leading to Missing Authentication Check...

Oracle Siebel CRM (January 2013 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2013 CPU advisory. - Vulnerability in the Siebel CRM component of Oracle Siebel CRM subcomponent: Siebel Calendar. Supported versions that are affected are 8.1.1 an...

Boa (>=0.13.0 <=0.13.1), arci-urdf-viz (>=0.0.7 <=0.1.0) +89 more potentially affected by unknown CVE via fast-float (=0.2.0)

fast-float CARGO version =0.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on fast-float and may be impacted: - Boa =0.13.0, =0.0.7, =0.1.0, =0.1.0, =0.1.2, =0.1.0, =0.19.0, =0.3.0, =0.4.1, =0.6.2, =0.3.2, =0.4.1, =0.3.2, =0.20.2 and more Source cves...

CVE-2024-0379

creationtimestamp| type| source ---|---|--- 2024-03-01 17:17:19+00:00| seen| https://t.me/ctinow/197806 2025-02-06 02:44:19+00:00| seen| Telegram/C4-7zQtakm6BVdhL-78iDwczKYdFPl8146wE4tYIo6fAec9...

CVE-2024-0379

CVE-2024-0379 - CSRF in Custom Twitter Feeds (WordPress) up to version 2.2.1 stems from missing/incorrect nonce validation in the ctf_auto_save_tokens function. This allows unauthenticated attackers to forge requests and update a site’s Twitter API token and secret if the admin is duped into perf...

CentOS 8 : libXpm (CESA-2023:0379)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:0379 advisory. - libXpm: Runaway loop on width of 0 and enormous height CVE-2022-44617 - libXpm: Infinite loop on unclosed comments CVE-2022-46285 - libXpm: compressi...

openSUSE 15 Security Update : gstreamer-plugins-bad (openSUSE-SU-2023:0379-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0379-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

Rocky Linux 8 : libXpm (RLSA-2023:0379)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:0379 advisory. - A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly and can le...

CVE-2023-0379

creationtimestamp| type| source ---|---|--- 2023-02-13 18:35:55+00:00| seen| https://t.me/cibsecurity/58003...

CVE-2023-0379 Spotlight Social Feeds < 1.4.3 - Contributor+ Stored XSS

The Spotlight Social Feeds WordPress plugin before 1.4.3 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

CVE-2023-0379

The CVE-2023-0379 entry concerns the Spotlight Social Feeds WordPress plugin (pre-1.4.3). The issue is that certain block options are not validated or escaped before being re-output in pages where the block is embedded, enabling Stored Cross-Site Scripting by users with contributor privileges or ...

RHEL 8 : libXpm (RHSA-2023:0379)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0379 advisory. X.Org X11 libXpm runtime library. Security Fixes: libXpm: compression commands depend on $PATH CVE-2022-4883 libXpm: Runaway loop on width o...

WordPress Spotlight Social Media Feeds Plugin < 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software Spotlight Social Media Feeds Type Plugin Vulnerable versions 1.4.3 Fixed in 1.4.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0379 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 727812743302 Credits Lana...

Mageia: Security Advisory (MGASA-2013-0379)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-0379

creationtimestamp| type| source ---|---|--- 2022-01-26 18:19:47+00:00| seen| https://t.me/cibsecurity/36318...

CVE-2022-0379 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

CVE-2022-0379 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

CVE-2022-0379

CVE-2022-0379 affects microweber/microweber prior to version 1.2.11 and is a stored Cross-site Scripting (XSS) vulnerability. Public descriptions consistently identify XSS in microweber’s checkout/routing context, enabling injection of arbitrary JavaScript. Impact is listed as high in some source...