9 matches found
CVE-2025-28879
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aumsrini Bee Layer Slider allows Stored XSS. This issue affects Bee Layer Slider: from n/a through 1.1...
CVE-2024-55977
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BinaryCarpenter LaunchPage.app Importer launchpage-app-importer allows SQL Injection.This issue affects LaunchPage.app Importer: from n/a through = 1.1...
PT-2024-36217 · Woocommerce · Check Pincode For Woocommerce
Name of the Vulnerable Software and Affected Versions: Check Pincode For Woocommerce versions 1.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS. Recommendations: For...
PT-2024-35814 · Unknown · Autoquiz Ai Quiz
Name of the Vulnerable Software and Affected Versions: AutoQuiz AI Quiz versions n/a through 1.1 Description: The issue is related to a missing authorization vulnerability in AutoQuiz AI Quiz, which allows accessing functionality not properly constrained by Access Control Lists ACLs. This means...
PT-2024-35244 · Unknown · B-Banner Slider
Name of the Vulnerable Software and Affected Versions: B-Banner Slider versions 1.1 and earlier Description: The issue is related to an unrestricted upload of files with dangerous types, allowing an attacker to upload a web shell to a web server. This poses a severe cybersecurity risk...
PT-2024-34255 · Woocommerce · Woocommerce Quote Calculator
Name of the Vulnerable Software and Affected Versions: WooCommerce Quote Calculator versions 1.1 and earlier Description: The issue is related to an SQL Injection vulnerability, specifically an Improper Neutralization of Special Elements used in an SQL Command. This allows for Blind SQL Injection...
CVE-2023-49763
Cross-Site Request Forgery CSRF vulnerability in Creatomatic Ltd CSprite.This issue affects CSprite: from n/a through 1.1...
PT-2023-10155 · Unknown · Java-Xmlbuilder
Name of the Vulnerable Software and Affected Versions: java-xmlbuilder versions up to 1.1 Description: A vulnerability was found in the software, rated as problematic. It affects some unknown functionality and leads to xml external entity reference. Recommendations: For versions up to 1.1, upgrad...
PT-2021-19806 · Apache · Apache Superset
Name of the Vulnerable Software and Affected Versions: Apache Superset versions up to and including 1.1 Description: The issue allows an attacker with Explore access to save a chart with a malicious title, injecting html including scripts into the page, due to incorrect sanitization of titles on...