EUVD-2025-44025

Malicious code in gita-botok59-pore npm...

CVE-2024-44025

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicejob NiceJob nicejob allows Stored XSS.This issue affects NiceJob: from n/a through 3.6.5...

CVE-2024-44025 WordPress NiceJob plugin < 3.6.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicejob NiceJob nicejob allows Stored XSS.This issue affects NiceJob: from n/a through 3.6.5...

CVE-2024-44025

CVE-2024-44025: WordPress NiceJob plugin is affected by a Stored XSS due to improper input neutralization during web page generation in versions before 3.6.5. Affected: NiceJob WordPress plugin

CVE-2024-44025 WordPress NiceJob plugin < 3.6.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicejob NiceJob nicejob allows Stored XSS.This issue affects NiceJob: from n/a through 3.6.5...

WordPress NiceJob Plugin < 3.6.5 is vulnerable to Cross Site Scripting (XSS)

Software NiceJob Type Plugin Vulnerable versions 3.6.5 Fixed in 3.6.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44025 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID afa3856f254d Credits stealthcopter Required privilege Contributor...

CVE-2023-44025

creationtimestamp| type| source ---|---|--- 2023-11-02 01:22:05+00:00| seen| https://t.me/cibsecurity/73393...

CVE-2023-44025

SQL injection vulnerability in addify Addifyfreegifts v.1.0.2 and before allows a remote attacker to execute arbitrary code via a crafted script to the getrulebyid function in the AddifyfreegiftsModel.php component...

CVE-2023-44025

CVE-2023-44025 affects the Addifyfreegifts plugin (version 1.0.2 and earlier) with a SQL injection in the getrulebyid function inside AddifyfreegiftsModel.php. This vulnerability can allow a remote attacker to execute arbitrary code, as indicated by the documented impacts (high confidentiality, i...

SUSE CVE-2021-44025

Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to XSS in handling an attachment's filename extension when displaying a MIME type warning message...

CVE-2022-44025

creationtimestamp| type| source ---|---|--- 2023-01-27 16:39:32+00:00| seen| https://t.me/cibsecurity/57038...

CVE-2022-44025

NetScout nGeniusONE 6.3.2 before P10 exposes a Reflected Cross-Site Scripting (XSS) vulnerability (CVE-2022-44025) with CVSS v3.1 base score 6.1 (MEDIUM). The Connected documents confirm affected software/version and the XSS class, but do not provide exploitation details or a concrete remediation...

CVE-2022-44025

An issue was discovered in NetScout nGeniusONE 6.3.2 before P10. It allows Reflected Cross-Site Scripting XSS, issue 2 of 6...

Fedora: Security Advisory for roundcubemail (FEDORA-2021-43d3c10590)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-5013-1 : roundcube - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5013 advisory. - Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to XSS in handling an attachment's filename extension when displaying a MIME type warning message...

Debian: Security Advisory (DSA-5013-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 5013-1] roundcube security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5013-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 27, 2021 https://www.debian.org/security/faq -...

CVE-2021-44025

creationtimestamp| type| source ---|---|--- 2021-11-19 07:16:26+00:00| seen| https://t.me/cibsecurity/32673...

CVE-2021-44025

Roundcube webmail vulnerability CVE-2021-44025 (XSS) and CVE-2021-44026 (SQL injection) affect Roundcube before 1.3.17 and 1.4.x before 1.4.12. The XSS is triggered by handling an attachment filename extension in a MIME type warning message; the SQLi affects search/search_params handling. Publicl...