EUVD-2025-4513

Malicious code in bioql PyPI...

EUVD-2025-26920

Malicious code in bioql PyPI...

CVE-2025-58857

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KaizenCoders Table of content content-table allows Stored XSS.This issue affects Table of content: from n/a through = 1.5.3.1...

CVE-2025-58857

CVE-2025-58857 corresponds to a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin “Table of content” (WordPress Table of content, content-table). Public sources in the connected documents indicate the affected versions are

CVE-2025-58857 WordPress Table of content Plugin <= 1.5.3.1 - Cross Site Request Forgery (CSRF) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KaizenCoders Table of content content-table allows Stored XSS.This issue affects Table of content: from n/a through = 1.5.3.1...

WordPress Table of content Plugin <= 1.5.3.1 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Table of content versions = 1.5.3.1...

PT-2025-36196

Name of the Vulnerable Software and Affected Versions: KaizenCoders Table of content versions through 1.5.3.1 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, specifically a Stored Cross-Site Scripting XSS flaw in the Table of content...

WordPress plugin Table of content cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

CVE-2024-13465

The aBlocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Table Of Content" Block, specifically in the "markerView" attribute, in all versions up to, and including, 1.6.1 due to insufficient input sanitization and output escaping. This mak...

CVE-2024-13465

The CVE-2024-13465 in the aBlocks – WordPress Gutenberg Blocks plugin is a Stored Cross‑Site Scripting vulnerability that affects the Table Of Content block. The flaw lies in insufficient input sanitization and output escaping in the markerView attribute, enabling an authenticated attacker (Contr...

WordPress plugin aBlocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...

PT-2025-6549 · WordPress · Ablocks

Name of the Vulnerable Software and Affected Versions: aBlocks - WordPress Gutenberg Blocks plugin versions up to and including 1.6.1 Description: The issue is related to Stored Cross-Site Scripting via the "Table Of Content" Block, specifically in the markerView attribute, due to insufficient...