46 matches found
EUVD-2014-1258
Malware in sbrugna...
EUVD-2024-52445
Malicious code in bioql PyPI...
EUVD-2025-3878
Malicious code in bioql PyPI...
CVE-2024-51498
cobalt is a media downloader that doesn't piss you off. A malicious cobalt instance could serve links with the javascript: protocol, resulting in Cross-site Scripting XSS when the user tries to download an item from a picker. This issue has been present since commit 66bac03e, was mitigated in...
CVE-2014-125090
A vulnerability was found in Media Downloader Plugin 0.1.992 on WordPress. It has been declared as problematic. This vulnerability affects the function dlfileresumable of the file getfile.php. The manipulation of the argument file leads to cross site scripting. The attack can be initiated remotel...
MAL-2025-3854 Malicious code in shaon-media-downloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 558572daf3fc57c68d96e761789af95252072a63def7fbecefe3ff6d8ba5ab9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in shaon-media-downloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 558572daf3fc57c68d96e761789af95252072a63def7fbecefe3ff6d8ba5ab9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-24684
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ederson Peka Media Downloader media-downloader allows Reflected XSS.This issue affects Media Downloader: from n/a through = 0.4.7.5...
CVE-2024-54322
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ederson Peka Media Downloader media-downloader allows Reflected XSS.This issue affects Media Downloader: from n/a through = 0.4.7.4...
CVE-2025-24684
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ederson Peka Media Downloader media-downloader allows Reflected XSS.This issue affects Media Downloader: from n/a through = 0.4.7.5...
CVE-2025-24684 WordPress Media Downloader Plugin <= 0.4.7.5 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ederson Peka Media Downloader media-downloader allows Reflected XSS.This issue affects Media Downloader: from n/a through = 0.4.7.5...
CVE-2025-24684
CVE-2025-24684 corresponds to a WordPress WordPress Media Downloader plugin vulnerability: Reflected Cross-Site Scripting (XSS) due to improper input neutralization during web page generation. Affected software: Media Downloader versions up to 0.4.7.5 (and earlier). The connected sources confirm ...
CVE-2025-24684 WordPress Media Downloader Plugin <= 0.4.7.5 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ederson Peka Media Downloader media-downloader allows Reflected XSS.This issue affects Media Downloader: from n/a through = 0.4.7.5...
WordPress plugin Media Downloader 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-5504 · Unknown · Ederson Peka Media Downloader
Name of the Vulnerable Software and Affected Versions: Ederson Peka Media Downloader versions 0.4.7.5 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for reflected Cross-site Scripting XSS. This enables an attacker to inje...
WordPress Media Downloader Plugin <= 0.4.7.5 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Media Downloader versions = 0.4.7.5...
Malicious code in prem-media-downloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ede831b4b52c9df6bee9007afd5ecbf303a958640eb1ceb9fa7f2144992d3098 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11900 Malicious code in alifx-media-downloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8716d89d3543726f75604dccfd9a5ab777f48047bb3aa028cdc047c77d1b9dc6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in alifx-media-downloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8716d89d3543726f75604dccfd9a5ab777f48047bb3aa028cdc047c77d1b9dc6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-54322
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ederson Peka Media Downloader media-downloader allows Reflected XSS.This issue affects Media Downloader: from n/a through = 0.4.7.4...