17 matches found
EUVD-2025-35475
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NickDuncan Nifty Backups nifty-backups allows Reflected XSS.This issue affects Nifty Backups: from n/a through = 1.08...
CVE-2025-52763
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NickDuncan Nifty Backups nifty-backups allows Reflected XSS.This issue affects Nifty Backups: from n/a through = 1.08...
PT-2025-43247
Name of the Vulnerable Software and Affected Versions NickDuncan Nifty Backups versions through 1.08 Description The software contains a flaw related to improper input handling during web page generation, specifically a Reflected Cross-Site Scripting issue. This allows for the injection of...
EUVD-2023-48590
Malicious code in bioql PyPI...
EUVD-2025-17206
Malicious code in bioql PyPI...
CVE-2025-30935
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NickDuncan Contact Form contact-form-ready allows DOM-Based XSS.This issue affects Contact Form: from n/a through = 2.0.12...
CVE-2025-30935
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NickDuncan Contact Form contact-form-ready allows DOM-Based XSS.This issue affects Contact Form: from n/a through = 2.0.12...
CVE-2025-30935
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NickDuncan Contact Form contact-form-ready allows DOM-Based XSS.This issue affects Contact Form: from n/a through = 2.0.12...
CVE-2025-30935
CVE-2025-30935 affects the WordPress plugin Contact Form-ready (Contact Form). It is a DOM-based XSS vulnerability in input handling during web page generation, with affected versions from n/a through 2.0.12. The public risk details in the provided documents indicate a CVSSv3.1 base score of 6.5 ...
PT-2025-24162 · Unknown · Nickduncan Contact Form
Name of the Vulnerable Software and Affected Versions: NickDuncan Contact Form versions n/a through 2.0.12 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an attacker...
CVE-2023-44231
Cross-Site Request Forgery CSRF vulnerability in NickDuncan Contact Form plugin = 2.0.10 versions...
CVE-2023-44231
Cross-Site Request Forgery CSRF vulnerability in NickDuncan Contact Form plugin = 2.0.10 versions...
CVE-2023-44231
Cross-Site Request Forgery CSRF vulnerability in NickDuncan Contact Form plugin = 2.0.10 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in NickDuncan Contact Form plugin = 2.0.10 versions...
CVE-2023-44231 WordPress Contact Form Plugin <= 2.0.10 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in NickDuncan Contact Form plugin = 2.0.10 versions...
CVE-2023-44231
CVE-2023-44231 pertains to the NickDuncan Contact Form plugin for WordPress. A CSRF vulnerability exists in versions
PT-2023-29156 · Unknown · Nickduncan Contact Form
Name of the Vulnerable Software and Affected Versions: NickDuncan Contact Form plugin versions = 2.0.10 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a web application that the user is...