408 matches found
CVE-2025-49930
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetSearch jet-search allows Reflected XSS.This issue affects JetSearch: from n/a through = 3.5.10...
CVE-2025-49931
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Crocoblock JetSearch jet-search allows Blind SQL Injection.This issue affects JetSearch: from n/a through = 3.5.10...
CVE-2025-49927
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetWooBuilder jet-woo-builder allows Stored XSS.This issue affects JetWooBuilder: from n/a through = 2.1.20.1...
CVE-2025-49928
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetWooBuilder jet-woo-builder allows DOM-Based XSS.This issue affects JetWooBuilder: from n/a through = 2.1.20...
CVE-2025-49938 WordPress JetEngine plugin <= 3.7.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetEngine jet-engine allows Stored XSS.This issue affects JetEngine: from n/a through = 3.7.3...
CVE-2025-49934 WordPress JetBlocks For Elementor plugin <= 1.3.18 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Stored XSS.This issue affects JetBlocks For Elementor: from n/a through = 1.3.18...
CVE-2025-49932
CVE-2025-49932 : A Stored Cross-Site Scripting (XSS) vulnerability affects CrocoBlock JetBlog (jet-blog) versions up to and including 2.4.4.1. The root cause is improper neutralization of input during web page generation, allowing injected scripts to be stored and later viewed by other users. Imp...
CVE-2025-49928 WordPress JetWooBuilder plugin <= 2.1.20 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetWooBuilder jet-woo-builder allows DOM-Based XSS.This issue affects JetWooBuilder: from n/a through = 2.1.20...
PT-2025-43202
Name of the Vulnerable Software and Affected Versions CrocoBlock JetEngine versions through 3.7.3 Description A Stored Cross-site Scripting XSS issue exists in CrocoBlock JetEngine. This allows for the injection of malicious scripts into web pages. The issue is due to improper neutralization of...
PT-2025-43191
Name of the Vulnerable Software and Affected Versions CrocoBlock JetWooBuilder versions through 2.1.20.1 Description A flaw exists in CrocoBlock JetWooBuilder that allows for Stored Cross-site Scripting XSS. This issue is due to improper neutralization of input during web page generation...
PT-2025-43198
Name of the Vulnerable Software and Affected Versions CrocoBlock JetBlocks For Elementor versions through 1.3.18 Description A flaw exists in CrocoBlock JetBlocks For Elementor that allows for Stored Cross-Site Scripting XSS. This issue involves improper neutralization of input during web page...
PT-2025-43203
Name of the Vulnerable Software and Affected Versions CrocoBlock JetElements For Elementor versions through 2.7.8 Description A flaw exists in CrocoBlock JetElements For Elementor that allows for Stored Cross-Site Scripting XSS. This issue is due to improper neutralization of input during web pag...
PT-2025-43197
Name of the Vulnerable Software and Affected Versions CrocoBlock JetBlog versions through 2.4.4 Description The software contains a flaw due to improper neutralization of input during web page generation, specifically a Reflected Cross-site Scripting XSS issue. This allows for the injection of...
PT-2025-43195
Name of the Vulnerable Software and Affected Versions CrocoBlock JetSearch versions through 3.5.10 Description A flaw exists in CrocoBlock JetSearch that allows for Blind SQL Injection due to improper neutralization of special elements used in SQL commands. This issue could potentially allow an...
PT-2025-43196
Name of the Vulnerable Software and Affected Versions CrocoBlock JetBlog versions through 2.4.4.1 Description A flaw exists in CrocoBlock JetBlog that allows for Stored Cross-site Scripting XSS. This issue arises from improper neutralization of input during web page generation. An attacker could...
PT-2025-43194
Name of the Vulnerable Software and Affected Versions CrocoBlock JetSearch versions through 3.5.10 Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Reflected Cross-Site Scripting XSS condition. This allows an attacker to...
EUVD-2021-25047
Malware in sbrugna...
EUVD-2023-52795
Malicious code in bioql PyPI...
EUVD-2025-15756
Malicious code in bioql PyPI...
EUVD-2025-25365
Malicious code in bioql PyPI...