MAL-2025-37433 Malicious code in typopro-web-TypoPRO-GrandHotel (npm)

The package typopro-web-TypoPRO-GrandHotel was found to contain malicious code...

CVE-2024-37433

creationtimestamp| type| source ---|---|--- 2024-07-22 11:57:26+00:00| seen| https://t.me/cvedetector/1390...

CVE-2024-37433

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.9...

CVE-2024-37433 WordPress Mailster plugin <= 4.0.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.9...

WordPress Mailster Plugin <= 4.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Mailster Type Plugin Vulnerable versions = 4.0.9 Fixed in 4.0.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37433 Patch priority Medium CVSS severity Medium 7.1 Developer EverPress PSID fd696b7f3710 Credits Martin Herancourt Required privilege...

CVE-2023-37433

creationtimestamp| type| source ---|---|--- 2023-08-22 22:25:06+00:00| seen| https://t.me/cibsecurity/69005...

CVE-2023-37433

SQL injection vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator exist and can be exploited by an authenticated remote attacker to obtain and modify sensitive data in the underlying database, potentially leading to exposure and corruption of data. The provide...

CVE-2023-37433 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and...