EUVD-2024-33495

Malicious code in bioql PyPI...

CVE-2024-10320

The Cookielay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's cookielay shortcode in all versions up to, and including, 1.2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2024-10320 Cookielay <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via cookielay Shortcode

The Cookielay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's cookielay shortcode in all versions up to, and including, 1.2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2024-10320

CVE-2024-10320 concerns the WordPress Cookielay plugin (

CVE-2024-10320 Cookielay <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via cookielay Shortcode

The Cookielay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's cookielay shortcode in all versions up to, and including, 1.2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

PT-2024-16186 · WordPress · Cookielay

Name of the Vulnerable Software and Affected Versions: Cookielay plugin for WordPress versions up to, and including, 1.2.0 Description: The issue is related to Stored Cross-Site Scripting via the plugin's cookielay shortcode due to insufficient input sanitization and output escaping on...

WordPress Cookielay plugin <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via cookielay Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via cookielay Shortcode vulnerability discovered by Peter Thaleikis in WordPress Plugin Cookielay versions = 1.2.0...