CVE-2026-29971

A reflected cross-site scripting XSS vulnerability exists in WebFileSys version before 2.32.0 and fixed in v.2.32.0. User-controlled input is reflected into HTML and JavaScript contexts without proper output encoding, allowing arbitrary JavaScript execution in the victim's browser via the ftpBack...

WebFileSys 安全漏洞

WebFileSys is a web-based multi-user file manager developed by WebFileSys Inc. in Java. Version 2.31.1 of WebFileSys contains a security vulnerability, which stems from improperly encoded user-controlled inputs. This vulnerability could lead to reflection-type cross-site scripting attacks...

Exploit for CVE-2026-29971

CVE-2026-29971 An attacker can execute arbitrary JavaScript in...

EUVD-2022-0739

Malicious code in bioql PyPI...

EUVD-2024-37002

Malicious code in bioql PyPI...

CVE-2024-37476

Cross Site Scripting XSS vulnerability in Automattic Newspack Campaigns allows Stored XSS.This issue affects Newspack Campaigns: from n/a through 2.31.1...

CVE-2021-43862

jQuery Terminal Emulator is a plugin for creating command line interpreters in your applications. Versions prior to 2.31.1 contain a low impact and limited cross-site scripting XSS vulnerability. The code for XSS payload is always visible, but an attacker can use other techniques to hide the code...

WordPress plugin Newspack Campaigns security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

PT-2024-27585 · Automattic · Newspack Campaigns

Name of the Vulnerable Software and Affected Versions: Newspack Campaigns versions 2.31.1 and earlier Description: The issue is a Cross Site Scripting XSS vulnerability, specifically a Stored XSS, in Automattic Newspack Campaigns. This allows for malicious scripts to be stored on the server and...

jQuery 跨站脚本漏洞

jQuery is the United States John Resig individual developers of a set of open source , cross-browser JavaScript library . The library simplifies the operation between HTML and JavaScript, and features modularity, plug-in extensions, and so on. A cross-site scripting vulnerability exists in jQuery...

GNU Binutils integer overflow vulnerability (CNVD-2019-00563)

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. An integer overflow vulnerability in t...

GNU Binutils Null Pointer Dereference Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

PT-2019-10149 · Gnu +3 · Gnu Binutils +3

Name of the Vulnerable Software and Affected Versions: GNU Binutils version 2.31.1 Description: The issue is related to a memory leak in the demangle template function in cplus-dem.c, which can lead to a denial of service due to memory consumption when a crafted string is processed. This can be...