19 matches found
CVE-2023-25789
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Tapfiliate plugin = 3.0.12 versions...
EUVD-2023-29686
Malicious code in bioql PyPI...
EUVD-2025-30491
Malicious code in bioql PyPI...
CVE-2025-58689
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tapfiliate Tapfiliate tapfiliate allows Stored XSS.This issue affects Tapfiliate: from n/a through = 3.2.2...
CVE-2025-58689
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tapfiliate Tapfiliate tapfiliate allows Stored XSS.This issue affects Tapfiliate: from n/a through = 3.2.2...
WordPress Tapfiliate Plugin <= 3.2.2 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Gilang Asra Bilhadi - DJ in WordPress Plugin Tapfiliate versions = 3.2.2...
CVE-2025-58689 WordPress Tapfiliate Plugin <= 3.2.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tapfiliate Tapfiliate tapfiliate allows Stored XSS.This issue affects Tapfiliate: from n/a through = 3.2.2...
CVE-2025-58689
CVE-2025-58689 : Affected software is Tapfiliate (WordPress plugin) up to version 3.2.2. The issue is an authenticated Stored Cross-Site Scripting (XSS) vulnerability in web page generation, as described in the CVE entry and corroborated by the Wordfence vulnerability details. The CVSS base score...
CVE-2025-58689 WordPress Tapfiliate Plugin <= 3.2.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tapfiliate Tapfiliate tapfiliate allows Stored XSS.This issue affects Tapfiliate: from n/a through = 3.2.2...
PT-2025-38977
Name of the Vulnerable Software and Affected Versions Tapfiliate versions through 3.2.2 Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Cross-site Scripting issue. This allows for Stored XSS attacks. The issue involves the...
WordPress plugin Tapfiliate 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-sit...
CVE-2023-25789
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Tapfiliate plugin = 3.0.12 versions...
CVE-2023-25789
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Tapfiliate plugin = 3.0.12 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Tapfiliate plugin = 3.0.12 versions...
CVE-2023-25789 WordPress Tapfiliate Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Tapfiliate plugin = 3.0.12 versions...
CVE-2023-25789
CVE-2023-25789: WordPress Tapfiliate plugin
WordPress plugin Tapfiliate 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Tapfiliate Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS)
Software Tapfiliate Type Plugin Vulnerable versions = 3.0.12 Fixed in 3.0.13 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25789 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3c37b6ed9dee Credits Rio Darmawan Required...
Tapfiliate < 3.0.13 - Admin+ Stored XSS
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...