30 matches found
EUVD-2017-11072
Malware in sbrugna...
EUVD-2024-29310
Malicious code in bioql PyPI...
EUVD-2024-46004
Malicious code in bioql PyPI...
EUVD-2023-43690
Malicious code in bioql PyPI...
CVE-2021-24275
The Popup by Supsystic WordPress plugin before 1.10.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue...
CVE-2017-20065
A vulnerability was found in Supsystic Popup Plugin 1.7.6 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2024-52434
Deserialization of Untrusted Data vulnerability in supsystic Popup by Supsystic popup-by-supsystic allows Command Injection.This issue affects Popup by Supsystic: from n/a through = 1.10.29...
CVE-2023-39997
Missing Authorization vulnerability in supsystic.com Popup by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup by Supsystic: from n/a through 1.10.19...
CVE-2024-52434
Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Popup by Supsystic allows Command Injection.This issue affects Popup by Supsystic: from n/a through 1.10.29...
CVE-2024-31421
Missing Authorization vulnerability in supsystic Popup by Supsystic popup-by-supsystic.This issue affects Popup by Supsystic: from n/a through = 1.10.27...
CVE-2024-31421
Missing Authorization vulnerability in Supsystic Popup by Supsystic.This issue affects Popup by Supsystic: from n/a through 1.10.27...
CVE-2024-31421 WordPress Popup by Supsystic plugin <= 1.10.27 - Broken Access Control vulnerability
Missing Authorization vulnerability in supsystic Popup by Supsystic popup-by-supsystic.This issue affects Popup by Supsystic: from n/a through = 1.10.27...
CVE-2024-31421
CVE-2024-31421 concerns a Missing Authorization vulnerability in Supsystic Popup by Supsystic, affecting Popup by Supsystic versions up to 1.10.27 (no details on exposed actions). Root cause identified in connected Red Hat advisory as Missing Authorization. Public information in the provided docu...
PT-2024-24062 · Supsystic · Supsystic Popup
Name of the Vulnerable Software and Affected Versions: Supsystic Popup by Supsystic versions 1.10.27 and earlier Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects the Supsystic Popup by Supsystic plugin, allowing unauthorized access due to the...
PT-2023-29896 · Supsystic · Popup
Name of the Vulnerable Software and Affected Versions: Popup by Supsystic versions 1.10.19 and earlier Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability. This allows Relative Path Traversal, which ca...
CVE-2023-3186 Supsystic Popup < 1.10.19 - Prototype Pollution
The Popup by Supsystic WordPress plugin before 1.10.19 has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties into Object.prototype...
WordPress plugin Supsystic Popup 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
PT-2023-23493 · WordPress · The Popup By Supsystic
Name of the Vulnerable Software and Affected Versions: The Popup by Supsystic WordPress plugin versions prior to 1.10.19 Description: The issue allows an attacker to inject arbitrary properties into Object.prototype due to a prototype pollution vulnerability. Recommendations: For versions prior t...
Supsystic Popup < 1.10.19 - Prototype Pollution
The plugin has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties into Object.prototype. 1 Create a pop-up that is set to load on any page 2 Go to http://example.com/?protopoc=polluted 3 Open browser console 4 Type poc and see polluted as the result...
Supsystic Popup < 1.10.19 - Prototype Pollution
The plugin has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties into Object.prototype. PoC 1 Create a pop-up that is set to load on any page 2 Go to http://example.com/?protopoc=polluted 3 Open browser console 4 Type poc and see polluted as the resul...