41 matches found
EUVD-2024-30260
Malicious code in bioql PyPI...
EUVD-2024-30259
Malicious code in bioql PyPI...
EUVD-2024-37599
Malicious code in bioql PyPI...
EUVD-2024-28170
Malicious code in bioql PyPI...
CVE-2024-32442
Cross-Site Request Forgery CSRF vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.7...
CVE-2024-32441
Cross-Site Request Forgery CSRF vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.7...
CVE-2024-30239
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.6...
CVE-2024-38752
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Zoho Campaigns allows Cross-Site Scripting XSS.This issue affects Zoho Campaigns: from n/a through 2.0.8...
CVE-2024-38752
The CVE CVE-2024-38752 affects Zoho Campaigns WordPress plugin versions up to and including 2.0.8, with an XSS vulnerability caused by improper input neutralization during web page generation. The issue allows cross-site scripting in affected pages and has CVSS 3.1 base metrics (Network attack; l...
CVE-2024-38752 WordPress Zoho Campaigns plugin <= 2.0.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Zoho Campaigns allows Cross-Site Scripting XSS.This issue affects Zoho Campaigns: from n/a through 2.0.8...
CVE-2024-38752 WordPress Zoho Campaigns plugin <= 2.0.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Zoho Campaigns allows Cross-Site Scripting XSS.This issue affects Zoho Campaigns: from n/a through 2.0.8...
WordPress plugin Zoho Campaigns 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Zoho Campaigns plugin <= 2.0.8 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Zoho Campaigns versions = 2.0.8...
WordPress Zoho Campaigns Plugin <= 2.0.8 is vulnerable to Cross Site Scripting (XSS)
Software Zoho Campaigns Type Plugin Vulnerable versions = 2.0.8 Fixed in 2.1.0 OWASP Top 10 A4: Insecure Design Classification Cross Site Scripting XSS CVE CVE-2024-38752 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 48112379bb70 Credits Majed Refaea Required...
Zoho Campaigns < 2.0.8 - Cross-Site Request Forgery via zcwc_integration_disconnect
Description The Zoho Campaigns plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.7. This is due to missing or incorrect nonce validation on the zcwcintegrationdisconnect function. This makes it possible for unauthenticated attackers to disconne...
Zoho Campaigns < 2.0.7 - Authenticated (Contributor+) SQL Injection
Description The Zoho Campaigns plugin for WordPress is vulnerable to SQL Injection in all versions up to, and including, 2.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated...
Zoho Campaigns < 2.0.8 - Cross-Site Request Forgery via zcwc_optin_save
Description The Zoho Campaigns plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.7. This is due to missing or incorrect nonce validation on the zcwcoptinsave function. This makes it possible for unauthenticated attackers to update the optin...
CVE-2024-32442
Cross-Site Request Forgery CSRF vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.7...
CVE-2024-32441
Cross-Site Request Forgery CSRF vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.7...
CVE-2024-32441
Cross-Site Request Forgery CSRF vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.7...