23 matches found
CVE-2023-25466
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...
EUVD-2023-51669
Malicious code in bioql PyPI...
EUVD-2023-50348
Malicious code in bioql PyPI...
EUVD-2023-29421
Malicious code in bioql PyPI...
EUVD-2024-44910
Malicious code in bioql PyPI...
CVE-2023-47558
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Mahlamusa Who Hit The Page – Hit Counter allows SQL Injection.This issue affects Who Hit The Page – Hit Counter: from n/a through 1.4.14.3...
CVE-2023-46087
Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...
CVE-2024-50526
Unrestricted Upload of File with Dangerous Type vulnerability in mahlamusa Multi Purpose Mail Form allows Upload a Web Shell to a Web Server.This issue affects Multi Purpose Mail Form: from n/a through 1.0.2...
CVE-2024-50484
Unrestricted Upload of File with Dangerous Type vulnerability in Lindeni Mahlalela Multi Purpose Mail Form multi-purpose-mail-form allows Upload a Web Shell to a Web Server.This issue affects Multi Purpose Mail Form: from n/a through = 1.0.2...
PT-2024-34261 · Unknown · Mahlamusa Multi Purpose Mail Form
Name of the Vulnerable Software and Affected Versions: Mahlamusa Multi Purpose Mail Form versions 1.0.2 and earlier Description: The issue allows for the unrestricted upload of files with dangerous types, potentially enabling an attacker to upload a web shell to a web server. Recommendations: For...
CVE-2023-47558
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Mahlamusa Who Hit The Page – Hit Counter allows SQL Injection.This issue affects Who Hit The Page – Hit Counter: from n/a through 1.4.14.3...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Mahlamusa Who Hit The Page – Hit Counter allows SQL Injection.This issue affects Who Hit The Page – Hit Counter: from n/a through 1.4.14.3...
CVE-2023-47558
CVE-2023-47558 concerns the WordPress plugin Who Hit The Page – Hit Counter (v
PT-2023-30507 · Unknown · Mahlamusa Who Hit The Page – Hit Counter
Name of the Vulnerable Software and Affected Versions: Mahlamusa Who Hit The Page – Hit Counter versions 1.4.14.3 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injectio...
CVE-2023-46087
Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...
CVE-2023-46087
Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...
CVE-2023-46087
CVE-2023-46087 describes a CSRF vulnerability in the WordPress plugin “Who Hit The Page – Hit Counter” by Mahlamusa, affecting versions 1.4.14.3 or apply vendor-provided CSRF mitigations. The CVE entry does not provide exploit specifics beyond the CSRF description, and the vulnerability impact i...
CVE-2023-46087 WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...
PT-2023-29836 · WordPress · Mahlamusa Who Hit The Page – Hit Counter
Name of the Vulnerable Software and Affected Versions: Mahlamusa Who Hit The Page – Hit Counter plugin versions = 1.4.14.3 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a web application tha...