262 matches found
CVE-2025-1065 Visualizer: Tables and Charts Manager for WordPress <= 3.11.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Import Data From File
The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Import Data From File feature in all versions up to, and including, 3.11.8 due to insufficient input sanitization and output escaping on user supplied...
CVE-2025-1065
The Red Hat and Wordfence data confirm CVE-2025-1065 is a Stored XSS vulnerability in Visualizer: Tables and Charts Manager for WordPress. Affected: Visualizer plugin for WordPress (Visualizer: Tables and Charts Manager for WordPress) up to version 3.11.8. Root cause: insufficient input sanitizat...
WordPress plugin Visualizer 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...
WordPress Visualizer plugin <= 3.11.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Import Data From File vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Import Data From File vulnerability discovered by Webbernaut in WordPress Plugin Visualizer versions = 3.11.8...
Intel Thread Director Visualizer 代码问题漏洞
Intel Thread Director Visualizer is a desktop application from Intel Corporation USA. It helps end-users visualize CPU utilization and the distribution between P-cores performance cores and E-cores energy-efficient cores for Alder Lake and above platforms. A code issue vulnerability exists in Int...
PT-2025-6649 · Intel · Intel Thread Director Visualizer
Name of the Vulnerable Software and Affected Versions: IntelR Thread Director Visualizer version 1.0.0 Description: The issue concerns an uncontrolled search path in the IntelR Thread Director Visualizer software. This could potentially allow an authenticated user to enable escalation of privileg...
CVE-2022-24900
Piano LED Visualizer is software that allows LED lights to light up as a person plays a piano connected to a computer. Version 1.3 and prior are vulnerable to a path traversal attack. The os.path.join call is unsafe for use with untrusted input. When the os.path.join call encounters an absolute...
CVE-2024-3750
The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to unauthorized modification and retrieval of data due to a missing capability check on the getQueryData function in all versions up to, and including, 3.10.15. This makes it possible for authenticated...
CVE-2024-27958
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeisle Visualizer allows Reflected XSS.This issue affects Visualizer: from n/a through 3.10.5...
CVE-2024-35736
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Themeisle Visualizer.This issue affects Visualizer: from n/a through 3.11.1...
Malicious code in gcp-scanner-visualizer (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-663 Malicious code in gcp-scanner-visualizer (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
SUSE CVE-2024-47530
Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by redirecting them to malicious page. /login API endpoint is vulnerable to open redirect attack via next parameter due to absence of sanitization logic. Additionally, due to lac...
CVE-2024-11998
A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /visualizer-forneccedor.chp. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-11998
CVE-2024-11998 affects code-projects Farmacia 1.0. The vulnerability resides in the /visualizer-forneccedor.chp file, where manipulation of the id parameter leads to SQL injection. The issue can be exploited remotely and publicly disclosed exploits exist. Connected sources confirm the affected so...
CVE-2024-11998 code-projects Farmacia visualizer-forneccedor.chp sql injection
A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /visualizer-forneccedor.chp. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-11998 code-projects Farmacia visualizer-forneccedor.chp sql injection
A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /visualizer-forneccedor.chp. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...
Code-Projects Farmacia 注入漏洞
Code-Projects Farmacia is a content management system from Code-Projects open source. An injection vulnerability exists in Code-Projects Farmacia version 1.0, which stems from the parameter id of the file /visualizer-forneccedor.chp that can cause SQL injection...
PT-2024-17392 · Unknown · Code-Projects Farmacia
Name of the Vulnerable Software and Affected Versions: code-projects Farmacia version 1.0 Description: A critical issue has been identified, affecting unknown code in the /visualizer-forneccedor.chp file. The manipulation of the id argument leads to SQL injection. This issue can be exploited...
CVE-2024-47531
Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it is possible bypass intended file extension and make users download malicious files with any extension. With malicious content injected inside the file data and users unknowingly downloading it and...