MAL-2025-35721 Malicious code in test-mlw2-loyal-ewers (npm)

The package test-mlw2-loyal-ewers was found to contain malicious code...

CVE-2020-35721

Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote attackers to inject malicious code into the browser via a specially crafted link to the BrowseAssets.do file via the title parameter. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

CVE-2024-35721

Missing Authorization vulnerability in A WP Life Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery.This issue affects Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery: from n/a through 1.4.5...

CVE-2024-35721 WordPress Image Gallery plugin <= 1.4.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in A WP Life Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery.This issue affects Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery: from n/a through 1.4.5...

CVE-2024-35721

CVE-2024-35721 documents a Missing Authorization vulnerability in the WP Life Image Gallery family (Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery). Public details indicate affected versions range up to 1.4.5 (n/a to 1.4.5) with the issue described as Missing Authorization. The conne...

CVE-2024-35721 WordPress Image Gallery plugin <= 1.4.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in A WP Life Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery.This issue affects Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery: from n/a through 1.4.5...

CVE-2023-35721

CVE-2023-35721 affects NETGEAR routers. The vulnerability stems from improper certificate validation in the update/HTTPS channel, allowing network-adjacent attackers to execute arbitrary code with root privileges by exploiting the update functionality. The issue is exploitation requires no authen...

Security Bulletin: IBM Jazz for Service Management is vulnerable to stored cross-site scripting (CVE-2022-35721)

Summary IBM Jazz for Service Management is vulnerable to stored cross-site scripting. This vulnerability can exploit or hijack authenticated users sessions. Vulnerability Details CVEID:CVE-2022-35721 DESCRIPTION: IBM Jazz for Service Management 1.1.3 is vulnerable to stored cross-site scripting...

Security Bulletin: A security vulnerability has been identified in IBM Jazz for Service Management shipped with Tivoli Netcool/OMNIbus WebGUI (CVE-2022-35721)

Summary IBM Jazz for Service Management JazzSM is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about a security vulnerability affecting JazzSM has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes...

CVE-2022-35721

creationtimestamp| type| source ---|---|--- 2022-09-23 22:13:54+00:00| seen| https://t.me/cibsecurity/50380...

CVE-2022-35721

IBM Jazz for Service Management 1.1.3 is vulnerable to stored cross-site scripting (CVE-2022-35721), allowing embedded JavaScript in the Web UI and potentially credential disclosure within a trusted session. Affected product: Jazz for Service Management 1.1.3 (WebGUI inclusion via Tivoli Netcool/...

CVE-2020-35721

creationtimestamp| type| source ---|---|--- 2021-01-11 07:45:13+00:00| seen| https://t.me/cibsecurity/21890...

CVE-2020-35721

Quest Policy Authority 8.1.2.200 is affected by a reflected XSS via the BrowseAssets.do title parameter. Root cause: user-controlled title reflected to browser; impact: remote code injection in victims’ browsers. Exploitation details are not provided in the documents. The PT-2021-11833 advisory l...

secure-hotel-booking.com XSS vulnerability

Vulnerable URL: https://www.secure-hotel-booking.com/smart/Hotel-'-alert'XSSPOSED'-'/29I4/ru Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 35721 VIP website status:| Yes Check...