2148 matches found
Malicious code in abstract-api_wrapper (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-5949 Malicious code in roblox-py-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in roblox-py-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-5950 Malicious code in roblox-python-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in roblox-python-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in ro-py-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-5948 Malicious code in ro-py-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in one-amex-wrapper (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-2792 Malicious code in one-amex-wrapper (npm)
--- -= Per source details. Do not edit below this line.=-...
WordPress Wrapper Link Elementor plugin 1.0.2, 1.0.3 - Injected Backdoor vulnerability
Injected Backdoor vulnerability discovered by WordFence in WordPress Plugin Wrapper Link Elementor versions 1.0.2,1.0.3...
Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts
Multiple WordPress plugins have been backdoored to inject malicious code that makes it possible to create rogue administrator accounts with the aim of performing arbitrary actions. "The injected malware attempts to create a new administrative user account and then sends those details back to the...
WordPress Wrapper Link Elementor Plugin 1.0.2,1.0.3 is vulnerable to Backdoor
Software Wrapper Link Elementor Type Plugin Vulnerable versions 1.0.2,1.0.3 Fixed in 1.0.5 OWASP Top 10 A3: Injection Classification Backdoor CVE CVE-2024-6297 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 73ed028987ed Credits WordFence Required privilege Unauthenticate...
CVE-2024-4098
The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.6.13 via the shariff3uufetchsharecounts function. This allows unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code i...
CVE-2024-4098
The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.6.13 via the shariff3uufetchsharecounts function. This allows unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code i...
CVE-2024-4098 Shariff Wrapper <= 4.6.13 - Unauthenticated Local File Inclusion
The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.6.13 via the shariff3uufetchsharecounts function. This allows unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code i...
CVE-2024-4098
CVE-2024-4098 affects the Shariff Wrapper WordPress plugin (versions up to and including 4.6.13). The vulnerability is Local File Inclusion via shariff3uu_fetch_sharecounts, allowing unauthenticated attackers to include and execute arbitrary PHP files on the server, potentially bypassing access c...
CVE-2024-4098 Shariff Wrapper <= 4.6.13 - Unauthenticated Local File Inclusion
The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.6.13 via the shariff3uufetchsharecounts function. This allows unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code i...
WordPress plugin Shariff Wrapper security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin... A security vulnerability...
WordPress Shariff Wrapper plugin <= 4.6.13 - Unauthenticated Local File Inclusion vulnerability
Unauthenticated Local File Inclusion vulnerability discovered by haidv35 in WordPress Plugin Shariff versions = 4.6.13...
Information Disclosure
moodle/moodle is vulnerable to Information Disclosure. The vulnerability is caused due to the cURL wrapper in Moodle failing to clear HTTP authorization headers when following redirects, potentially exposing sensitive authentication information to unintended hosts...