45 matches found
CVE-2026-36748
RockRMS v16.13 and before v.17.7.0 is vulnerable to Cross Site Scripting XSS via Social Media links in user profile...
CVE-2026-10105
creationtimestamp| type| source ---|---|--- 2026-05-29 20:10:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmzdsekh3l2s 2026-05-29 22:26:49+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mmzlfnbqri2v 2026-05-30 20:01:32+00:00| seen|...
CVE-2026-48207
creationtimestamp| type| source ---|---|--- 2026-05-21 17:20:27+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmewkfjyo22j 2026-05-21 19:05:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmf4gxjw3k2o 2026-05-21 20:01:11+00:00| seen|...
CVE-2026-24188
creationtimestamp| type| source ---|---|--- 2026-05-20 21:02:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmcsi2lzjh2e 2026-05-20 22:23:25+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mmcwzb5vl72w...
CVE-2026-7719
creationtimestamp| type| source ---|---|--- 2026-05-04 02:33:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkyn2vo2zh2n 2026-05-04 03:00:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mkyol2h2ic2d 2026-05-04 03:00:30+00:00| seen|...
CVE-2026-31893
creationtimestamp| type| source ---|---|--- 2026-03-30 13:23:42+00:00| seen| https://infosec.exchange/users/raptor/statuses/116318340503071355 2026-03-30 13:23:52+00:00| seen| https://bsky.app/profile/raptor.infosec.exchange.ap.brid.gy/post/3mibr3ebgghd2 2026-03-30 21:27:43+00:00| seen|...
CVE-2026-0833
The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user-supplied social network link URLs. This makes it possible for authenticate...
CVE-2026-0833
The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user-supplied social network link URLs. This makes it possible for authenticate...
CVE-2026-0833 Team Section Block <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Social Network Link
The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user-supplied social network link URLs. This makes it possible for authenticate...
CVE-2026-0833 Team Section Block <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Social Network Link
The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user-supplied social network link URLs. This makes it possible for authenticate...
CVE-2026-0833
CVE-2026-0833 corresponds to a Stored Cross-Site Scripting vulnerability in the WordPress Team Section Block plugin (versions
CVE-2026-0833
The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user-supplied social network link URLs. This makes it possible for authenticate...
PT-2026-3352
The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user-supplied social network link URLs. This makes it possible for authenticate...
CVE-2025-23570
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Mitchell Bundy WP Social Links wp-social-links allows Reflected XSS.This issue affects WP Social Links: from n/a through = 0.3.1...
CVE-2025-12090
The Employee Spotlight – Team Member Showcase & Meet the Team Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Social URLs in all versions up to, and including, 5.1.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...
EUVD-2025-5725
Malicious code in bioql PyPI...
EUVD-2025-5645
Malicious code in bioql PyPI...
EUVD-2025-5665
Malicious code in bioql PyPI...
CVE-2023-5162
The Options for Twenty Seventeen plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'social-links' shortcode in versions up to, and including, 2.5.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-25137
Cross-Site Request Forgery CSRF vulnerability in kareemsultan Social Links social-links allows Stored XSS.This issue affects Social Links: from n/a through = 1.0.11...