4 matches found
CVE-2025-53215
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 8bitkid Yahoo! WebPlayer yahoo-media-player allows Reflected XSS.This issue affects Yahoo! WebPlayer: from n/a through = 2.0.6...
CVE-2024-24718
Missing Authorization vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through 2.0.6...
PT-2024-15993 · WordPress · Transients Manager
Name of the Vulnerable Software and Affected Versions: Transients Manager plugin for WordPress version 2.0.6 and earlier Description: The issue is due to missing or incorrect nonce validation on the process actions function, making it possible for unauthenticated attackers to delete transients vi...
PT-2021-23998 · Laravel · Laravel Ignition
Name of the Vulnerable Software and Affected Versions: Laravel Ignition component versions prior to 1.16.15 Laravel Ignition component versions 2.0.x prior to 2.0.6 Description: The issue concerns the "fix variable names" feature in the Ignition component for Laravel, which can lead to incorrect...