EUVD-2011-0659

Malware in sbrugna...

EUVD-2025-3240

Malicious code in bioql PyPI...

CVE-2025-23544

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in heart5 StatPressCN statpresscn allows Reflected XSS.This issue affects StatPressCN: from n/a through = 1.9.1...

CVE-2025-23544

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in heart5 StatPressCN statpresscn allows Reflected XSS.This issue affects StatPressCN: from n/a through = 1.9.1...

CVE-2025-23544 WordPress StatPressCN plugin <= 1.9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in heart5 StatPressCN statpresscn allows Reflected XSS.This issue affects StatPressCN: from n/a through = 1.9.1...

CVE-2025-23544

CVE-2025-23544 corresponds to a Reflected XSS in heart5 StatPressCN. Affected: StatPressCN versions up to 1.9.1. Root cause: Improper input neutralization during web page generation. Impact: Reflected injection that may trigger script execution in affected users’ browsers. Public details in conne...

WordPress plugin StatPressCN 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

PT-2025-4932 · Unknown · Heart5 Statpresscn

Name of the Vulnerable Software and Affected Versions: heart5 StatPressCN versions 1.9.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows reflected Cross-site Scripting XSS. This enables attackers to inject malicious script...

WordPress StatPressCN plugin <= 1.9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin StatPressCN versions = 1.9.1...

CVE-2011-0641

Multiple cross-site scripting XSS vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 what1, 2 what2, 3 what3, 4 what4, and 5 what5 parameters. NOTE: the provenance of this information is...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 what1, 2 what2, 3 what3, 4 what4, and 5 what5 parameters. NOTE: the provenance of this information is...

CVE-2011-0641

Multiple cross-site scripting XSS vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 what1, 2 what2, 3 what3, 4 what4, and 5 what5 parameters. NOTE: the provenance of this information is...

CVE-2011-0641

Affected software: WordPress with the StatPressCN plugin. Vulnerable component: wp-admin/admin.php of StatPressCN 1.9.0. Issue: Multiple cross-site scripting (XSS) vulnerabilities exploitable via the parameters what1, what2, what3, what4, and what5. Root cause: not explicitly detailed beyond the ...

WordPress StatPressCN Plugin <= 1.9.0 - Multiple XSS

Because of these vulnerabilities in wp-admin/admin.php, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

Statpresscn <= 1.9.0 - Multiple XSS

The StatPressCN WordPress plugin was affected by a Multiple XSS security vulnerability...