CVE-2020-7934

In LifeRay Portal CE 7.1.0 through 7.2.1 GA2, the First Name, Middle Name, and Last Name fields for user accounts in MyAccountPortlet are all vulnerable to a persistent XSS issue. Any user can modify these fields with a particular XSS payload, and it will be stored in the database. The payload wi...

CVE-2025-56704

LeptonCMS version 7.3.0 contains an arbitrary file upload vulnerability, which is caused by the lack of proper validation for uploaded files. An authenticated attacker can exploit this vulnerability by uploading a specially crafted ZIP/PHP file to execute arbitrary code...

EUVD-2023-35113

Malicious code in bioql PyPI...

EUVD-2022-41747

Malicious code in bioql PyPI...

EUVD-2025-8085

Malicious code in bioql PyPI...

EUVD-2023-28488

Malicious code in bioql PyPI...

EUVD-2022-34644

Malicious code in bioql PyPI...

CVE-2024-53798

Missing Authorization vulnerability in BAKKBONE Australia FloristPress bakkbone-florist-companion.This issue affects FloristPress: from n/a through = 7.3.0...

CVE-2023-46820

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Iulia Cazan Image Regenerate & Select Crop.This issue affects Image Regenerate & Select Crop: from n/a through 7.3.0...

CVE-2023-24470

Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0...

CVE-2023-47681

Missing Authorization vulnerability in QuadLayers WooCommerce Checkout Manager.This issue affects WooCommerce Checkout Manager: from n/a through 7.3.0...

CVE-2025-29789

OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 7.3.0 are vulnerable to Directory Traversal in the Load Code feature. Version 7.3.0 contains a patch for the issue...

CVE-2025-29789 OpenEMR Has Directory Traversal in Load Code feature

OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 7.3.0 are vulnerable to Directory Traversal in the Load Code feature. Version 7.3.0 contains a patch for the issue...

CVE-2025-29789 OpenEMR Has Directory Traversal in Load Code feature

OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 7.3.0 are vulnerable to Directory Traversal in the Load Code feature. Version 7.3.0 contains a patch for the issue...

CVE-2025-2610

Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling Alarm Module modules allows authenticated stored cross-site scripting. This vulnerability is associated with program files protected/components/MagnusLog.Php. This issue affects MagnusBilling...

CVE-2025-2610

Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling Alarm Module modules allows authenticated stored cross-site scripting. This vulnerability is associated with program files protected/components/MagnusLog.Php. This issue affects MagnusBilling...

MagnusBilling 安全漏洞

MagnusBilling is a fast, secure, efficient, and highly available VOIP billing from MagnusSolution Open Source. A security vulnerability exists in MagnusBilling 7.3.0 and earlier versions that stems from improper input neutralization during web page generation and could lead to a cross-site...

CVE-2024-53798

Missing Authorization vulnerability in BAKKBONE Australia FloristPress bakkbone-florist-companion.This issue affects FloristPress: from n/a through = 7.3.0...

PT-2024-35912 · Unknown · Floristpress

Name of the Vulnerable Software and Affected Versions: FloristPress versions n/a through 7.3.0 Description: The issue is related to a Missing Authorization vulnerability in FloristPress. Recommendations: For versions n/a through 7.3.0, update to a version that contains a fix for this issue,...

WordPress FloristPress plugin <= 7.3.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin FloristPress versions = 7.3.0...