MAL-2025-34812 Malicious code in test-mlw1-thars-cubit-rucks-kells (npm)

The package test-mlw1-thars-cubit-rucks-kells was found to contain malicious code...

CVE-2024-34812

Insertion of Sensitive Information Into Sent Data vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.8...

CVE-2024-34812 WordPress ShopBuilder plugin <= 2.1.8 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.8...

CVE-2024-34812

CVE-2024-34812 concerns Exposure of Sensitive Information to an Unauthorized Actor in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons. Affected product: ShopBuilder – Elementor WooCommerce Builder Addons (RadiusTheme) with versions from n/a through 2.1.8. Documented impact: informa...

WordPress ShopBuilder – Elementor WooCommerce Builder Addons Plugin <= 2.1.8 is vulnerable to Sensitive Data Exposure

Software ShopBuilder – Elementor WooCommerce Builder Addons Type Plugin Vulnerable versions = 2.1.8 Fixed in 2.1.9 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-34812 Patch priority Low CVSS severity Low 5.3 Developer Mamunur Rashid PSID 3f187cb1d98a...

CVE-2022-34812

CVE-2022-34812 is a cross-site request forgery (CSRF) vulnerability in Jenkins XPath Configuration Viewer Plugin versions 1.1.1 and earlier. The issue allows attackers with the user’s or an attacker’s access to perform create and delete XPath expressions, as stated in the CVE description and mult...

CVE-2021-34812

Use of hard-coded credentials vulnerability in php component in Synology Calendar before 2.4.0-0761 allows remote attackers to obtain sensitive information via unspecified vectors...

CVE-2021-34812

CVE-2021-34812 affects Synology Calendar: a vulnerability in the PHP component where hard-coded credentials allow remote attackers to obtain sensitive information. It is exploitable on Synology Calendar versions before 2.4.0-0761. Remediation is to upgrade to 2.4.0-0761 or later. Exploitation sta...

Cisco Registered Envelope Service Cross-Site Scripting Vulnerability (CNVD-2017-34812)

Cisco Registered Envelope Service is a set of mail service solutions from Cisco USA. The product includes read receipts for mail, mail recycling, mail forwarding and reply functions, and provides smartphone support. A cross-site scripting vulnerability exists in the web interface in Cisco...

CVE-2025-34812

...