8 matches found
EUVD-2025-31683
Malicious code in bioql PyPI...
CVE-2025-10168
The Any News Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'any-ticker' shortcode in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate...
CVE-2025-10168
The Any News Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'any-ticker' shortcode in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate...
CVE-2025-10168
CVE-2025-10168 — WordPress Any News Ticker plugin stores cross-site scripting via the any-ticker shortcode. All versions up to 3.1.1 are affected due to insufficient input sanitization and output escaping on user-supplied attributes. Exploitation requires authentic access at contributor level or ...
CVE-2025-10168 Any News Ticker <= 3.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Any News Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'any-ticker' shortcode in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate...
WordPress Any News Ticker plugin <= 3.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zaim in WordPress Plugin Any News Ticker versions = 3.1.1...
WordPress plugin Any News Ticker 跨站脚本漏洞
WordPress Any News Ticker plugin is a functional plugin for adding dynamic scrolling news tickers to your website. WordPress Any News Ticker plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of any-ticker, which can...
PT-2025-39932
Name of the Vulnerable Software and Affected Versions Any News Ticker plugin for WordPress versions up to and including 3.1.1 Description The Any News Ticker plugin for WordPress is susceptible to Stored Cross-Site Scripting through the 'any-ticker' shortcode. Insufficient input sanitization and...