2 matches found
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
Overview @astrojs/node is a Deploy your site to a Node.js server Affected versions of this package are vulnerable to Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' via the X-Forwarded-Host header when using the Astro.url property without validation. An attacker c...
PT-2024-23290 · WordPress · Tomas Wordpress Tooltips
Name of the Vulnerable Software and Affected Versions: Tomas WordPress Tooltips versions prior to 9.4.5 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential remote attacks...