14 matches found
EUVD-2024-45711
Malicious code in bioql PyPI...
EUVD-2023-55559
Malicious code in bioql PyPI...
EUVD-2024-37056
Malicious code in bioql PyPI...
CVE-2024-51918
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Freshlight Lab Pay With Stripe payments-stripe-gateway allows DOM-Based XSS.This issue affects Pay With Stripe: from n/a through = 1.2.1...
CVE-2024-37274
Cross-Site Request Forgery CSRF vulnerability in Rui Guerreiro WP Mobile Menu mobile-menu allows Cross Site Request Forgery.This issue affects WP Mobile Menu: from n/a through = 2.8.4.3...
CVE-2024-37274
CVE-2024-37274 concerns the WordPress plugin WP Mobile Menu (Freshlight Lab) with CSRF vulnerability. Public details indicate the issue affects WP Mobile Menu versions up to 2.8.4.3, allowing cross-site request forgery. The description from the CVE and corroborating records states a CSRF vulnerab...
CVE-2024-37274 WordPress WP Mobile Menu plugin <= 2.8.4.3 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Freshlight Lab WP Mobile Menu allows Cross Site Request Forgery.This issue affects WP Mobile Menu: from n/a through 2.8.4.3...
CVE-2024-51918
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Freshlight Lab Pay With Stripe payments-stripe-gateway allows DOM-Based XSS.This issue affects Pay With Stripe: from n/a through = 1.2.1...
CVE-2024-51918
CVE-2024-51918 is a DOM-based XSS in WordPress Pay With Stripe (plugin) up to version 1.2.1, caused by improper input neutralization during page generation. The CVSS v3.1 base score is 6.5 (Medium); attack vector is network, require user interaction, and the change in scope. References indicate t...
PT-2024-35050 · Freshlight · Freshlight Lab Pay With Stripe
Name of the Vulnerable Software and Affected Versions: Freshlight Lab Pay With Stripe versions 1.2.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing DOM-Based XSS. This means that an attacke...
CVE-2023-50826
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Freshlight Lab Menu Image, Icons made easy allows Stored XSS.This issue affects Menu Image, Icons made easy: from n/a through 3.10...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Freshlight Lab Menu Image, Icons made easy allows Stored XSS.This issue affects Menu Image, Icons made easy: from n/a through 3.10...
CVE-2023-50826
CVE-2023-50826 : Stored XSS in the WordPress plugin Menu Image, Icons made easy (affected through 3.10). The vulnerability is described as an input handling issue during web page generation (XSS) and is currently listed as Unpatched per the connected documents; patch/update availability is not pr...
PT-2023-31657 · Unknown · Freshlight Lab Menu Image
Name of the Vulnerable Software and Affected Versions: Freshlight Lab Menu Image, Icons made easy versions n/a through 3.10 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS, which means...