24 matches found
EUVD-2014-7058
Malware in sbrugna...
EUVD-2024-29183
Malicious code in bioql PyPI...
EUVD-2024-28406
Malicious code in bioql PyPI...
EUVD-2022-39062
Malicious code in bioql PyPI...
CVE-2024-31287
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.8...
CVE-2023-36503
Auth. contributor+ Cross-Site Scripting XSS vulnerability in Max Foundry WordPress Button Plugin MaxButtons plugin = 9.5.3 versions...
CVE-2024-30486
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.7...
CVE-2024-31287
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.8...
CVE-2024-31287
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.8...
CVE-2024-31287 WordPress Media Library Folders plugin <= 8.1.8 - Directory Traversal vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.8...
CVE-2024-30486
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.7...
CVE-2024-30486
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.7...
CVE-2024-30486
CVE-2024-30486 is an authenticated SQL injection in the WordPress plugin Media Library Folders (Media Library Folders: 8.1.7 and earlier). The issue arises from improper neutralization of input in SQL commands, enabling an attacker with Author+ or higher permissions to manipulate queries. The vul...
CVE-2023-36503
Auth. contributor+ Cross-Site Scripting XSS vulnerability in Max Foundry WordPress Button Plugin MaxButtons plugin = 9.5.3 versions...
CVE-2023-36503
CVE-2023-36503 affects the WordPress plugin MaxButtons (MaxFoundry) for versions
Cross site scripting
Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Max Foundry Button Plugin MaxButtons plugin = 9.2 at WordPress...
CVE-2022-38703 WordPress Button Plugin MaxButtons plugin <= 9.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Max Foundry Button Plugin MaxButtons plugin = 9.2 at WordPress...
Cross site request forgery (csrf)
Multiple Cross-Site Request Forgery CSRF vulnerabilities in Max Foundry MaxButtons plugin = 9.2 at WordPress...
PT-2022-23321 · Max Foundry · Maxbuttons
Name of the Vulnerable Software and Affected Versions: Max Foundry MaxButtons plugin versions = 9.2 Description: The issue concerns multiple Cross-Site Request Forgery CSRF vulnerabilities. CSRF is a type of attack where an attacker tricks a user into performing unintended actions on a web...
JVN#70411623: WordPress plugin "MaxButtons" vulnerable to cross-site scripting
The WordPress plugin "MaxButtons" provided by Max Foundry contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the logged in user's web browser. Solution Update the plugin Update the plugin according to the information provided by the developer...