184 matches found
WordPress Tiled Gallery Carousel Without JetPack plugin <= 3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Tiled Gallery Carousel Without JetPack versions = 3.1...
CVE-2022-31057
Shopware is an open source e-commerce software made in Germany. Versions of Shopware 5 prior to version 5.7.12 are subject to an authenticated Stored XSS in Administration. Users are advised to upgrade. There are no known workarounds for this issue...
EUVD-2021-23419
Malware in sbrugna...
EUVD-2021-11969
Malware in sbrugna...
EUVD-2021-11460
Malware in sbrugna...
EUVD-2021-11280
Malware in sbrugna...
EUVD-2020-15547
Malware in sbrugna...
EUVD-2018-2333
Malware in sbrugna...
EUVD-2018-8942
Malware in sbrugna...
EUVD-2018-9044
Malware in sbrugna...
EUVD-2021-11252
Malware in sbrugna...
EUVD-2019-5929
Malware in sbrugna...
EUVD-2019-8023
Malware in sbrugna...
EUVD-2021-11459
Malware in sbrugna...
EUVD-2021-11216
Malware in sbrugna...
EUVD-2022-30265
Malicious code in bioql PyPI...
CVE-2025-41044
A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'dataPagename' parameter in /apprain/page/manage-static-pages/create...
CVE-2021-32713
Shopware is an open source eCommerce platform. Versions prior to 5.6.10 suffer from an authenticated stored XSS in administration vulnerability. Users are recommend to update to the version 5.6.10. You can get the update to 5.6.10 regularly via the Auto-Updater or directly via the download overvi...
CVE-2021-25057
The Translation Exchange WordPress plugin through 1.0.14 was vulnerable to Authenticated Stored Cross-Site Scripting XSS within the Project Key text field found in the plugin's settings...
CVE-2021-24547
The KN Fix Your Title WordPress plugin through 1.0.1 was vulnerable to Authenticated Stored XSS in the separator field...