EUVD-2025-10788

Malicious code in bioql PyPI...

CVE-2025-32524

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MyWorks MyWorks WooCommerce Sync for QuickBooks Online myworks-woo-sync-for-quickbooks-online allows Reflected XSS.This issue affects MyWorks WooCommerce Sync for QuickBooks Online: from n/a throug...

CVE-2025-32524

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MyWorks MyWorks WooCommerce Sync for QuickBooks Online myworks-woo-sync-for-quickbooks-online allows Reflected XSS.This issue affects MyWorks WooCommerce Sync for QuickBooks Online: from n/a throug...

CVE-2025-32524

CVE-2025-32524 is a Reflected Cross-Site Scripting vulnerability in the MyWorks WooCommerce Sync for QuickBooks Online plugin. Affected software: MyWorks WooCommerce Sync for QuickBooks Online. Vulnerable component: the plugin's input handling during web page generation leading to reflected XSS. ...

CVE-2025-32524 WordPress MyWorks WooCommerce Sync for QuickBooks Online plugin <= 2.9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MyWorks MyWorks WooCommerce Sync for QuickBooks Online allows Reflected XSS. This issue affects MyWorks WooCommerce Sync for QuickBooks Online: from n/a through 2.9.1...

CVE-2025-32524 WordPress MyWorks WooCommerce Sync for QuickBooks Online plugin <= 2.9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MyWorks MyWorks WooCommerce Sync for QuickBooks Online myworks-woo-sync-for-quickbooks-online allows Reflected XSS.This issue affects MyWorks WooCommerce Sync for QuickBooks Online: from n/a throug...

PT-2025-16057 · Yworks · Myworks Woocommerce Sync For Quickbooks Online

Name of the Vulnerable Software and Affected Versions: MyWorks MyWorks WooCommerce Sync for QuickBooks Online versions 2.9.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Reflected Cross-site Scripting XSS. This...

WordPress plugin MyWorks WooCommerce Sync for QuickBooks Online 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress MyWorks WooCommerce Sync for QuickBooks Online plugin <= 2.9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin MyWorks WooCommerce Sync for QuickBooks Online versions = 2.9.1...

Intuit to Share Payroll Data from 1.4M Small Businesses With Equifax

Financial services giant Intuit this week informed 1.4 million small businesses using its QuickBooks Online Payroll and Intuit Online Payroll products that their payroll information will be shared with big-three consumer credit bureau Equifax starting later this year unless customers opt out by t...

NCR Barred Mint, QuickBooks from Banking Platform During Account Takeover Storm

Banking industry giant NCR Corp. NYSE: NCR late last month took the unusual step of temporarily blocking third-party financial data aggregators Mint and QuickBooks Online from accessing Digital Insight, an online banking platform used by hundreds of financial institutions. That ban, which came in...

QUICKBOOKS ONLINE Cloud Service Detection

Binary data 8504.prm...

Intuit QuickBooks Online Edition < 10 ActiveX Multiple Vulnerabilities

The remote host contains an Active control associated with QuickBooks Online Edition, a variant of Intuit QuickBooks implemented as an ActiveX control. The version of this control on the remote host reportedly is affected by multiple and as-yet unspecified stack-based buffer overflows that could...

Intuit QuickBooks Online Edition ActiveX控件多个远程安全漏洞

BUGTRAQ ID: 25544 CVECAN ID: CVE-2007-4471,CVE-2007-0322 QuickBooks Online Edition是一款在线财务软件。 QuickBooks Online Edition的ActiveX控件处理在处理畸形用户请求时存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 如果用户受骗打开了恶意HTML文档的话，QuickBooks Online Edition...

Path traversal

Multiple unspecified vulnerabilities in the Intuit QuickBooks Online Edition ActiveX control before 10 allow remote attackers to create or overwrite arbitrary files via unspecified arguments to the 1 httpGETToFile, 2 httpPOSTFromFile, and possibly other methods, probably involving path traversal...

CVE-2007-4471

Multiple unspecified vulnerabilities in the Intuit QuickBooks Online Edition ActiveX control before 10 allow remote attackers to create or overwrite arbitrary files via unspecified arguments to the 1 httpGETToFile, 2 httpPOSTFromFile, and possibly other methods, probably involving path traversal...