EUVD-2024-30619

Malicious code in bioql PyPI...

CVE-2024-32833

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nick Halsey List Custom Taxonomy Widget allows Stored XSS.This issue affects List Custom Taxonomy Widget: from n/a through 4.1...

CVE-2024-32833

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nick Halsey List Custom Taxonomy Widget allows Stored XSS.This issue affects List Custom Taxonomy Widget: from n/a through 4.1...

CVE-2024-32833 WordPress List Custom Taxonomy Widget plugin <= 4.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nick Halsey List Custom Taxonomy Widget allows Stored XSS.This issue affects List Custom Taxonomy Widget: from n/a through 4.1...

CVE-2024-32833

Technical details about CVE-2024-32833 (affected plugin/component/versions, impact, and fix) are not provided in the supplied documents. No exploit specifics or mitigations are present. Monitor for official advisories and updates.

PT-2024-24908 · Unknown · List Custom Taxonomy Widget

Name of the Vulnerable Software and Affected Versions: List Custom Taxonomy Widget versions n/a through 4.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS in the Nick Halsey List Cust...

WordPress List Custom Taxonomy Widget plugin <= 4.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin List Custom Taxonomy Widget versions = 4.1...

WordPress List Custom Taxonomy Widget Plugin <= 4.1 is vulnerable to Cross Site Scripting (XSS)

Software List Custom Taxonomy Widget Type Plugin Vulnerable versions = 4.1 Fixed in 4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32833 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 90a788aa4b58 Credits Joshua Chan Required privilege...

DRUPAL-CONTRIB-2021-031

The module provides a field widget for selecting taxonomy terms in a hierarchical fashion. The module doesn't sanitize user input in certain cases, leading to a possible Cross-Site-Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a role with...

[SECURITY] Fedora 23 Update: drupal7-active_tags-2.0-0.9.alpha1.fc23

Active Tags adds a new option to free tagging taxonomies. If selected the taxonomy widget is replaced by a new jQuery enabled tag entry widget. This package provides the following Drupal 7 module: activetags...