MAL-2025-38760 Malicious code in wander_l457u_9ovol_lullaby (npm)

The package wanderl457u9ovollullaby was found to contain malicious code...

CVE-2024-38760

creationtimestamp| type| source ---|---|--- 2024-08-13 13:46:03+00:00| seen| https://t.me/cvedetector/2998...

CVE-2024-38760 WordPress Send Users Email plugin <= 1.5.1 - Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in David Maucher Send Users Email allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Send Users Email: from n/a through 1.5.1...

WordPress Send Users Email Plugin <= 1.5.1 is vulnerable to Sensitive Data Exposure

Software Send Users Email Type Plugin Vulnerable versions = 1.5.1 Fixed in 1.5.2 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-38760 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 13aaf3930e9f Credits Joshua...

CVE-2023-38760

creationtimestamp| type| source ---|---|--- 2023-08-08 20:14:33+00:00| seen| https://t.me/cibsecurity/68017...

CVE-2023-38760

SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the role and gender parameters within the /QueryView.php component...

CVE-2023-38760

ChurchCRM v5.0.0 contains a SQL injection vulnerability in the QueryView.php component, exploitable via the role and gender parameters to access sensitive information. The issue’s root cause is input handling in that view leading to unauthorized data exposure. No explicit exploitation, mitigation...

CVE-2023-38760

SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the role and gender parameters within the /QueryView.php component...