MAL-2025-36503 Malicious code in test-mlw2-troad-flesh-misty-cills (npm)

The package test-mlw2-troad-flesh-misty-cills was found to contain malicious code...

CVE-2023-36503

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Max Foundry WordPress Button Plugin MaxButtons plugin = 9.5.3 versions...

CVE-2022-36503

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateMacClone...

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

CVE-2020-36503

The Connections Business Directory WordPress plugin before 9.7 does not validate or sanitise some connections' fields, which could lead to a CSV injection issue...

CVE-2024-36503

Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availability...

CVE-2023-36503

creationtimestamp| type| source ---|---|--- 2023-07-25 18:27:06+00:00| seen| https://t.me/cibsecurity/67248...

CVE-2023-36503

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Max Foundry WordPress Button Plugin MaxButtons plugin = 9.5.3 versions...

CVE-2023-36503

CVE-2023-36503 affects the WordPress plugin MaxButtons (MaxFoundry) for versions

CVE-2021-36503

CVE-2021-36503 is a SQL injection vulnerability affecting native-php-cms version 1.0. The issue allows remote attackers to execute arbitrary SQL commands by supplying crafted input to the cat parameter of the /list.php endpoint. The CVSS v3.1 base score is 9.8 (CRITICAL) with Network attack vecto...

CVE-2022-36503

creationtimestamp| type| source ---|---|--- 2022-08-25 18:30:12+00:00| seen| https://t.me/cibsecurity/48748...

CVE-2022-36503

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateMacClone...

CVE-2022-36503

Summary: CVE-2022-36503 affects H3C Magic NX18 Plus NX18PV100R003, with a stack overflow in the UpdateMacClone function. The vulnerability is scoped to the NX18PV100R003 version and is described as enabling a stack overflow (local vector) potentially impacting confidentiality, integrity, and avai...

CVE-2020-36503

creationtimestamp| type| source ---|---|--- 2021-11-01 11:21:21+00:00| seen| https://t.me/cibsecurity/31537...

CVE-2020-36503

The Connections Business Directory WordPress plugin before 9.7 does not validate or sanitise some connections' fields, which could lead to a CSV injection issue...

CVE-2020-36503

The CVE concerns the WordPress Connections Business Directory plugin prior to version 9.7, where some connection fields are not validated or sanitized, enabling CSV injection. The issue is documented as a CSV injection vulnerability with a high impact potential (CVSS v3.1: 8.0, HIGH; v2.0: 6.0, M...

CVE-2020-36503 Connections Business Directory < 9.7 - Admin+ CSV Injection

The Connections Business Directory WordPress plugin before 9.7 does not validate or sanitise some connections' fields, which could lead to a CSV injection issue...