WordPress Community Events plugin <= 1.5.2 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by ifoundbug in WordPress Plugin Community Events versions = 1.5.2...

CVE-2025-11995

creationtimestamp| type| source ---|---|--- 2025-11-01 04:54:39+00:00| seen| Telegram/NKjp8MmcHdjygw3rqbqoUbGxrABpbqf5BHIQ3vX8UXppDXE...

CVE-2020-11995

A deserialization vulnerability existed in dubbo 2.7.5 and its earlier versions, which could lead to malicious code execution. Most Dubbo users use Hessian2 as the default serialization/deserialization protool, during Hessian2 deserializing the HashMap object, some functions in the classes stored...

CVE-2024-11995

A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /pagamento.php. The manipulation of the argument total leads to cross site scripting. The attack can be launched remotely. The exploit...

CVE-2024-11995 code-projects Farmacia pagamento.php cross site scripting

A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /pagamento.php. The manipulation of the argument total leads to cross site scripting. The attack can be launched remotely. The exploit...

CVE-2024-11995 code-projects Farmacia pagamento.php cross site scripting

A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /pagamento.php. The manipulation of the argument total leads to cross site scripting. The attack can be launched remotely. The exploit...

CVE-2019-11995

creationtimestamp| type| source ---|---|--- 2024-03-15 14:52:16+00:00| seen| https://t.me/ctinow/208817...

CVE-2020-11995

creationtimestamp| type| source ---|---|--- 2021-01-11 12:45:22+00:00| seen| https://t.me/cibsecurity/21900...

CVE-2020-11995

This CVE describes a deserialization vulnerability in Apache Dubbo up to version 2.7.5 (and earlier) where Hessian2 deserializing a HashMap can trigger code execution via certain class methods (notably EqualsBean in rome-1.7.0.jar). The issue arises from the default Hessian2 deserialization path ...

CVE-2019-11995

Security vulnerabilities in HPE UIoT version 1.2.4.2 could allow unauthorized remote access and access to sensitive data. HPE has addressed this issue in HPE UIoT: For customers with release UIoT 1.2.4.2 fixes are made available with 1.2.4.2 RP3 HF1. For customers with release older than 1.2.4.2,...

CVE-2019-11995

CVE-2019-11995 affects HPE UIoT , with vulnerable release paths including 1.2.4.1/1.2.4.0 and 1.2.4.2. The issue allows unauthorized remote access and access to sensitive data. Mitigation per sources is to upgrade to UIoT 1.2.4.2 RP3 HF1 (or higher) or contact HPE support for assistance. Multiple...

CVE-2019-11995

Security vulnerabilities in HPE UIoT version 1.2.4.2 could allow unauthorized remote access and access to sensitive data. HPE has addressed this issue in HPE UIoT: For customers with release UIoT 1.2.4.2 fixes are made available with 1.2.4.2 RP3 HF1. For customers with release older than 1.2.4.2,...

CVE-2018-11995

CVE-2018-11995 affects Android builds using CAF components with the Linux kernel. The vulnerability arises from a partition name-check variable that is not reset for every iteration, which can cause improper termination in the META image. The root cause is the variable’s retention across iteratio...