2 matches found
GHSA-RVM8-J2CP-J592 pf4j vulnerable to remote code execution via loadpluginPath parameter
An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code via the loadpluginPath parameter...
Eyecix Careerfy跨站脚本漏洞
Eyecix Careerfy is a WordPress theme from Eyecix Pakistan.A cross-site scripting vulnerability exists in versions prior to Eyecix Careerfy 3.9.0, which stems from the program's lack of data validation filtering of user-supplied and output data. An attacker could exploit the vulnerability to execu...