5 matches found
EUVD-2024-50738
Malicious code in bioql PyPI...
CVE-2024-12275
The Canvasflow for WordPress plugin through 1.5.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
WordPress CanvasFlow plugin <= 1.5.5 - Reflected XSS vulnerability
Reflected XSS vulnerability discovered by Hassan Khan Yusufzai - Splint3r7 in WordPress Plugin CanvasFlow versions = 1.5.5...
CVE-2024-12275
CVE-2024-12275 affects the CanvasFlow for WordPress plugin (versions up to 1.5.5). The issue is a Reflected XSS caused by not sanitising/escaping a parameter before echoing it in the page, potentially impacting high-privilege users such as admins. The connected documents confirm the vulnerability...
WordPress plugin Canvasflow 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...