268 matches found
EUVD-2017-8902
Malware in sbrugna...
EUVD-2022-6928
Malicious code in bioql PyPI...
EUVD-2023-48504
Malicious code in bioql PyPI...
EUVD-2021-28081
Malicious code in bioql PyPI...
EUVD-2024-25314
Malicious code in bioql PyPI...
EUVD-2025-29012
Malicious code in bioql PyPI...
EUVD-2025-5469
Malicious code in bioql PyPI...
OSV-2025-765 Security exception in com.spotify.docker.client.shaded.com.fasterxml.jackson.databind.util.TokenBuffer
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=446027675 Crash type: Security exception Crash state: com.spotify.docker.client.shaded.com.fasterxml.jackson.databind.util.TokenBuffer java.base/java.lang.StringUTF16.newBytesFor java.base/java.lang.StringUTF16.toBytes...
CVE-2025-9879
The Spotify Embed Creator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'spotify' shortcode in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2025-9879
The Spotify Embed Creator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'spotify' shortcode in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2025-9879 Spotify Embed Creator <= 1.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Spotify Embed Creator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'spotify' shortcode in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2025-9879 Spotify Embed Creator <= 1.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Spotify Embed Creator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'spotify' shortcode in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2025-9879
CVE-2025-9879 affects the Spotify Embed Creator WordPress plugin (versions
WordPress plugin Spotify Embed Creator 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site scripting...
PT-2025-37282
Name of the Vulnerable Software and Affected Versions: Spotify Embed Creator plugin for WordPress versions up to and including 1.0.5 Description: The Spotify Embed Creator plugin for WordPress is susceptible to Stored Cross-Site Scripting through the plugin’s spotify shortcode. Insufficient input...
WordPress Spotify Embed Creator plugin <= 1.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Spotify Embed Creator versions = 1.0.5...
Malicious code in spotify-heroic-datasource (npm)
The package spotify-heroic-datasource was found to contain malicious code...
MAL-2025-33797 Malicious code in spotify-apollo-oss-site (npm)
The package spotify-apollo-oss-site was found to contain malicious code...
MAL-2025-33798 Malicious code in spotify-heroic-datasource (npm)
The package spotify-heroic-datasource was found to contain malicious code...
Malicious code in spotify-talos (npm)
The package spotify-talos was found to contain malicious code...