18 matches found
@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @kontaa/subgraph (>=1.0.1 <=1.2.3) +27 more potentially affected by CVE-2026-30972 via parse-server (>=2.0.8 <=7.5.4)
parse-server NPM version =2.0.8, =1.0.5, =1.0.1, =1.2.1, =2.4.46, =2.4.8, =1.0.0, =1.0.0, =1.0.1, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.29 - parse-cli-server2 =0.0.30 and more Source cves: CVE-2026-30972 Source advisory: OSV:GHSA-775H-3XRC-C228...
MAL-2025-30972 Malicious code in pywebqq (npm)
The package pywebqq was found to contain malicious code...
CVE-2025-30972
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iamapinan Woocommerce Line Notify woo-line-notify allows Stored XSS.This issue affects Woocommerce Line Notify: from n/a through = 1.1.7...
CVE-2025-30972
creationtimestamp| type| source ---|---|--- 2025-06-27 13:50:47+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19711...
CVE-2025-30972
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iamapinan Woocommerce Line Notify woo-line-notify allows Stored XSS.This issue affects Woocommerce Line Notify: from n/a through = 1.1.7...
CVE-2025-30972 WordPress Woocommerce Line Notify plugin <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iamapinan Woocommerce Line Notify woo-line-notify allows Stored XSS.This issue affects Woocommerce Line Notify: from n/a through = 1.1.7...
CVE-2025-30972
CVE-2025-30972 affects the WordPress plugin WooCommerce Line Notify . The issue is a Stored XSS caused by improper neutralization of input during web page generation. Affected versions are listed as from n/a through 1.1.7 . The connected documents confirm the vulnerability title, affected product...
WordPress Woocommerce Line Notify plugin <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by LVT-tholv2k in WordPress Plugin Woocommerce Line Notify versions = 1.1.7...
CVE-2021-30972
This issue was addressed with improved checks. This issue is fixed in Security Update 2022-001 Catalina, macOS Big Sur 11.6.3. A malicious application may be able to bypass certain Privacy preferences...
CVE-2022-30972
creationtimestamp| type| source ---|---|--- 2022-05-17 18:27:56+00:00| seen| https://t.me/cibsecurity/42825 2025-11-03 17:08:45+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3m4qj3kinrq62...
CVE-2022-30972
A cross-site request forgery CSRF vulnerability in Jenkins Storable Configs Plugin 1.0 and earlier allows attackers to have Jenkins parse a local XML file e.g., archived artifacts that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery...
CVE-2022-30972
A cross-site request forgery CSRF vulnerability in Jenkins Storable Configs Plugin 1.0 and earlier allows attackers to have Jenkins parse a local XML file e.g., archived artifacts that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery...
CVE-2022-30972
CVE-2022-30972 affects Jenkins Storable Configs Plugin 1.0 and earlier. The vulnerability arises because the XML parser is not configured to prevent XML external entity (XXE) attacks, allowing an attacker to have Jenkins parse a local XML file (e.g., archived artifacts) that uses external entitie...
Apple Mac OS X Security Update (HT213055)
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apple Mac OS X Security Update (HT213056)
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
About the security content of Security Update 2022-001 Catalina
About the security content of Security Update 2022-001 Catalina This document describes the security content of Security Update 2022-001 Catalina. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has...
CVE-2021-30972
CVE-2021-30972 is a TCC privacy-bypass issue affecting macOS Big Sur 11.x and macOS Catalina. It could allow a malicious local app to bypass certain Privacy preferences. It was fixed in Security Update 2022-001 for Catalina and Big Sur 11.6.3, per Apple advisories and the HTC/NESSUS entries refer...
CVE-2021-30972
This issue was addressed with improved checks. This issue is fixed in Security Update 2022-001 Catalina, macOS Big Sur 11.6.3. A malicious application may be able to bypass certain Privacy preferences...