EUVD-2011-0659

Malware in sbrugna...

EUVD-2025-3240

Malicious code in bioql PyPI...

CVE-2025-23544

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in heart5 StatPressCN statpresscn allows Reflected XSS.This issue affects StatPressCN: from n/a through = 1.9.1...

CVE-2025-23544

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in heart5 StatPressCN statpresscn allows Reflected XSS.This issue affects StatPressCN: from n/a through = 1.9.1...

CVE-2025-23544

CVE-2025-23544 corresponds to a Reflected XSS in heart5 StatPressCN. Affected: StatPressCN versions up to 1.9.1. Root cause: Improper input neutralization during web page generation. Impact: Reflected injection that may trigger script execution in affected users’ browsers. Public details in conne...

CVE-2025-23544 WordPress StatPressCN plugin <= 1.9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in heart5 StatPressCN statpresscn allows Reflected XSS.This issue affects StatPressCN: from n/a through = 1.9.1...

WordPress plugin StatPressCN 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

PT-2025-4932 · Unknown · Heart5 Statpresscn

Name of the Vulnerable Software and Affected Versions: heart5 StatPressCN versions 1.9.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows reflected Cross-site Scripting XSS. This enables attackers to inject malicious script...

WordPress StatPressCN plugin <= 1.9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin StatPressCN versions = 1.9.1...

CVE-2011-0641

Multiple cross-site scripting XSS vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 what1, 2 what2, 3 what3, 4 what4, and 5 what5 parameters. NOTE: the provenance of this information is...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 what1, 2 what2, 3 what3, 4 what4, and 5 what5 parameters. NOTE: the provenance of this information is...

CVE-2011-0641

Affected software: WordPress with the StatPressCN plugin. Vulnerable component: wp-admin/admin.php of StatPressCN 1.9.0. Issue: Multiple cross-site scripting (XSS) vulnerabilities exploitable via the parameters what1, what2, what3, what4, and what5. Root cause: not explicitly detailed beyond the ...

CVE-2011-0641

Multiple cross-site scripting XSS vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 what1, 2 what2, 3 what3, 4 what4, and 5 what5 parameters. NOTE: the provenance of this information is...

WordPress StatPressCN Plugin <= 1.9.0 - Multiple XSS

Because of these vulnerabilities in wp-admin/admin.php, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

Statpresscn <= 1.9.0 - Multiple XSS

The StatPressCN WordPress plugin was affected by a Multiple XSS security vulnerability...