26 matches found
EUVD-2019-12658
Malware in sbrugna...
EUVD-2025-12038
Malicious code in bioql PyPI...
CVE-2019-3019
Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2025-46442
Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...
WordPress Loan Calculator plugin <= 1.3 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Loan Calculator versions = 1.3...
CVE-2025-46442
Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...
CVE-2025-46442 WordPress Loan Calculator plugin <= 1.3 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...
CVE-2025-46442 WordPress Loan Calculator plugin <= 1.3 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Casey Johnson Loan Calculator repayment-calculator allows Stored XSS.This issue affects Loan Calculator: from n/a through = 1.3...
CVE-2025-46442
CVE-2025-46442 is a CSRF to Stored XSS vulnerability affecting the WordPress Loan Calculator plugin for versions n/a through 1.3. The CVSS base score is 7.1 (HIGH). Exploitation details are not provided in the initial description beyond the CSRF/XSS combo; connected documents corroborate the CSRF...
WordPress plugin Loan Calculator 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
WordPress Mortgage Calculator / Loan Calculator plugin <= 1.5.20 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by yudha in WordPress Plugin Mortgage Calculator / Loan Calculator versions = 1.5.20...
PT-2023-31660 · Unknown · Aerin Loan Repayment Calculator/Application Form
Name of the Vulnerable Software and Affected Versions: Aerin Loan Repayment Calculator and Application Form versions n/a through 2.9.3 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means tha...
WordPress Mortgage Calculator/Loan Calculator Cross-Site Scripting Vulnerability
WordPress is the WordPress Foundation's set of blogging platforms developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress Mortgage Calculator/Loan Calculator has a cross-site scripting vulnerability in versions prior to 1.5.17, which ste...
CVE-2021-24828
Vulnerability summary (CVE-2021-24828) : The WordPress plugin “Mortgage Calculator / Loan Calculator” prior to version 1.5.17 does not escape certain attributes in the mlcalc shortcode output. This can enable Cross-Site Scripting (XSS) by users with as little as a Contributor role. The issue is t...
Mortgage Calculator / Loan Calculator < 1.5.17 - Contributor+ Stored Cross-Site Scripting
The plugin does not escape the some of the attributes of its mlcalc shortcode before outputting them, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks PoC mlcalc schedule="month';alert/XSS///"...
Mortgage Calculator / Loan Calculator < 1.5.17 - Contributor+ Stored Cross-Site Scripting
The plugin does not escape the some of the attributes of its mlcalc shortcode before outputting them, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks mlcalc schedule="month';alert/XSS///"...
The vulnerability of the Loan Calculator sub-component of the Oracle Banking Digital Experience component in the bank analytics system’s simulation model, allowing a perpetrator to access the ability to modify, add, or delete data.
The vulnerability of the Loan Calculator sub-component of the Oracle Banking Digital Experience component of the banking analytics system’s simulation model, Oracle Financial Services Applications, is related to lack of access control. Exploiting this vulnerability could allow a malicious actor t...
CVE-2019-3019
Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
Buffer overflow
Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2019-3019
Vulnerability in the Oracle Banking Digital Experience product of Oracle Financial Services Applications component: Loan Calculator. Supported versions that are affected are 18.1, 18.2, 18.3 and 19.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...