24 matches found
EUVD-2016-5953
Malware in sbrugna...
EUVD-2025-13312
Malicious code in bioql PyPI...
EUVD-2023-2410
Malicious code in bioql PyPI...
CVE-2023-41940
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
CVE-2025-4198
The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the 'alink-tap' page. This makes it possible for unauthenticated attackers to update settings and inject malicious we...
CVE-2025-4198
CVE-2025-4198 – Alink Tap (WordPress) CSRF to Stored XSS . Affected: Alink Tap plugin for WordPress versions up to and including 1.3.1. Root cause: missing/incorrect nonce validation on the alink-tap page enables Cross-Site Request Forgery. Impact (per sources): unauthenticated attackers can upda...
CVE-2025-4198 Alink Tap <= 1.3.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the 'alink-tap' page. This makes it possible for unauthenticated attackers to update settings and inject malicious we...
CVE-2025-4198 Alink Tap <= 1.3.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the 'alink-tap' page. This makes it possible for unauthenticated attackers to update settings and inject malicious we...
PT-2025-18934 · WordPress · Alink Tap
Name of the Vulnerable Software and Affected Versions: Alink Tap plugin for WordPress versions up to, and including, 1.3.1 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the 'alink-tap' page. This allows unauthenticated attackers to...
GHSA-3VCR-579J-4X48 Stored XSS vulnerability in Jenkins TAP Plugin
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
Stored XSS vulnerability in Jenkins TAP Plugin
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
CVE-2023-41940
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
CVE-2023-41940
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
Cross site scripting
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
CVE-2023-41940
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
CVE-2023-41940
Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...
CVE-2023-41940
CVE-2023-41940 affects Jenkins TAP Plugin up to version 2.3. The vulnerability arises because TAP file contents are not escaped, allowing stored cross-site scripting (XSS) when an attacker can control the TAP content. The issue is explicitly described as a stored XSS in the TAP Plugin. Multiple c...
Jenkins Plugin TAP Cross-Site Scripting Vulnerability
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins Plugin is a software application. A security vulnerability...
GHSA-24JC-W55J-5P83 Jenkins TAP Plugin allows Path Traversal
Directory traversal vulnerability in the TAP plugin before 1.25 in Jenkins allows remote attackers to read arbitrary files via an unspecified parameter...
Jenkins TAP Plugin allows Path Traversal
Directory traversal vulnerability in the TAP plugin before 1.25 in Jenkins allows remote attackers to read arbitrary files via an unspecified parameter...