EUVD-2024-20995

Malicious code in bioql PyPI...

Sangfor Endpoint Detection and Response 安全漏洞

Sangfor Endpoint Detection and Response is a next-generation endpoint security solution from China-based Sangfor. A security vulnerability exists in Sangfor Endpoint Detection and Response versions 3.2.16, 3.2.17, and 3.2.19, which is caused by an OS command injection attack due to a flaw in the...

WordPress Booking Calendar plugin <= 3.2.19 - Authenticated (Contributor+) SQL Injection vulnerability

Authenticated Contributor+ SQL Injection vulnerability discovered by Peter Thaleikis in WordPress Plugin Booking calendar, Appointment Booking System versions = 3.2.19...

CVE-2024-3896

The Photo Gallery, Images, Slider in Rbs Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the the Gallery title field in all versions up to, and including, 3.2.19 due to insufficient input sanitization and output escaping. This makes it possible for authenticate...

WordPress plugin Photo Gallery, Images, Slider in Rbs Image Gallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

WordPress Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.19 - Cross-Site Request Forgery to Post Creation vulnerability

Cross-Site Request Forgery to Post Creation vulnerability discovered by JoanClarke2 in WordPress Plugin Robo Gallery versions = 3.2.19...

CVE-2024-23500

Server-Side Request Forgery SSRF vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks.This issue affects Gutenberg Blocks by Kadence Blocks: from n/a through 3.2.19...

PT-2024-19902 · Kadence Blocks · Kadence Wp Gutenberg Blocks

Name of the Vulnerable Software and Affected Versions: Kadence WP Gutenberg Blocks versions through 3.2.19 Description: The issue is a Server-Side Request Forgery SSRF vulnerability. It affects Kadence WP Gutenberg Blocks by Kadence Blocks. Recommendations: For versions through 3.2.19, update to ...

WordPress Gutenberg Blocks by Kadence Blocks Plugin <= 3.2.19 is vulnerable to Server Side Request Forgery (SSRF)

Software Gutenberg Blocks by Kadence Blocks Type Plugin Vulnerable versions = 3.2.19 Fixed in 3.2.20 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-23500 Patch priority Low CVSS severity Low 7.7 Developer KadenceWP PSID 12733422b1ab...

WordPress WP to Twitter Plugin <= 3.2.19 is vulnerable to Cross Site Scripting (XSS)

Software WP to Twitter Type Plugin Vulnerable versions = 3.2.19 Fixed in 3.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2c99a8d109d0 Credits Rafie Muhammad Patchstack Required...

Django 3.2.x < 3.2.19, 4.1.x < 4.1.9, 4.2.x < 4.2.1 Improper Input Validation Vulnerability - Linux

Django is prone to an input validation vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if...

SUSE CVE-2014-3482

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresqladapter.rb in the PostgreSQL adapter for Active Record in Ruby on Rails 2.x and 3.x before 3.2.19 allows remote attackers to execute arbitrary SQL commands by leveraging improper bitstring quoting...