WordPress Happy Addons for Elementor plugin <= 3.10.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Photo Stack Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Photo Stack Widget vulnerability discovered by RandomRoot in WordPress Plugin Happy Addons for Elementor versions = 3.10.3...

CVE-2021-47857

CVE-2021-47857 affects Moodle 3.10.3 and is a persistent cross-site scripting (XSS) vulnerability in the calendar event subtitle field. The underlying issue allows an attacker to inject malicious JavaScript into the subtitle track label of a crafted calendar event, with code execution possible wh...

Moodle cross-site scripting vulnerabilities

Moodle is an open-source e-learning software platform developed by Moodle. It is also known as a course management system, learning management system, or virtual learning environment. Version 3.10.3 of Moodle contains a cross-site scripting vulnerability. This vulnerability stems from a persisten...

SUSE CVE-2017-18900

An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows CSV injection via a compliance report...

SUSE CVE-2017-18901

An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover a team invite ID by requesting a JSON document...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002352)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002352 advisory. The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002344)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002344 advisory. Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of...

EUVD-2022-3894

Malicious code in bioql PyPI...

EUVD-2023-56370

Malicious code in bioql PyPI...

EUVD-2021-31485

Malicious code in bioql PyPI...

EUVD-2023-56372

Malicious code in bioql PyPI...

EUVD-2022-7524

Malicious code in bioql PyPI...

EUVD-2022-7540

Malicious code in bioql PyPI...

WordPress plugin ShortPixel Adaptive Images 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

modelscope (>=1.9.0 <=1.9.1), scepter (>=0.0.1 <=1.4.1) potentially affected by CVE-2025-41419 via ms-swift (>=1.3.0 <=3.10.3)

ms-swift PYPI version =1.3.0, =1.9.0, =0.0.1, =1.4.1 Source cves: CVE-2025-41419 Source advisory: OSV:GHSA-7C78-RM87-5673...

CVE-2024-56005

Cross-Site Request Forgery CSRF vulnerability in Posti Posti Shipping posti-shipping allows Cross Site Request Forgery.This issue affects Posti Shipping: from n/a through = 3.10.3...

CVE-2023-51672

Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3...

CVE-2023-47669

Cross-Site Request Forgery CSRF vulnerability in Cozmoslabs User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin = 3.10.3 versions...

CVE-2024-56005 WordPress Posti Shipping Plugin <= 3.10.3 - CSRF to Settings Change vulnerability

Cross-Site Request Forgery CSRF vulnerability in Posti Posti Shipping posti-shipping allows Cross Site Request Forgery.This issue affects Posti Shipping: from n/a through = 3.10.3...

PT-2024-36659 · Posti · Posti Shipping

Name of the Vulnerable Software and Affected Versions: Posti Shipping versions 3.10.3 and earlier Description: A Cross-Site Request Forgery CSRF issue affects Posti Shipping, allowing unauthorized actions to be performed on behalf of a user. Recommendations: For Posti Shipping versions 3.10.3 and...