EUVD-2024-46465

Malicious code in bioql PyPI...

CVE-2024-5226 Fuse Social Floating Sidebar <= 5.4.10 - Authenticated (Author+) Stored Cross-Site Scripting via File Upload

The Fuse Social Floating Sidebar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the file upload functionality in all versions up to, and including, 5.4.10 due to insufficient validation of SVG files. This makes it possible for authenticated attackers, with contributor-level...

WordPress Fuse Social Floating Sidebar plugin <= 5.4.10 - Authenticated (Author+) Stored Cross-Site Scripting via File Upload vulnerability

Authenticated Author+ Stored Cross-Site Scripting via File Upload vulnerability discovered by wesley wcraft in WordPress Plugin Fuse Social Floating Sidebar versions = 5.4.10...

PT-2024-35138 · WordPress · Fuse Social Floating Sidebar

Name of the Vulnerable Software and Affected Versions: Fuse Social Floating Sidebar plugin for WordPress versions up to, and including, 5.4.10 Description: The issue is related to Stored Cross-Site Scripting via the file upload functionality due to insufficient validation of SVG files. This allow...

WordPress plugin Fuse Social Floating Sidebar 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

WordPress Fuse Social Floating Sidebar Plugin <= 5.4.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software Fuse Social Floating Sidebar Type Plugin Vulnerable versions = 5.4.6 Fixed in 5.4.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47150 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 393d2a5bd141 Credits István...

WordPress Fuse Social Floating Sidebar plugin <= 5.4.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Fuse Social Floating Sidebar plugin versions = 5.4.2. Solution Update the WordPress Fuse Social Floating Sidebar plugin to the latest available version at least 5.4.3...

WordPress Fuse Social Floating Sidebar plugin <= 5.4.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Fuse Social Floating Sidebar plugin versions = 5.4.2. Solution Update the WordPress Fuse Social Floating Sidebar plugin to the latest available version at least 5.4.3...