16 matches found
EUVD-2011-5080
Malware in sbrugna...
EUVD-2025-10940
Malicious code in bioql PyPI...
ZooEffect <= 1.11 - Reflected Cross-Site Scripting
Description The ZooEffect plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.11 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
CVE-2025-26954
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 1pluginjquery ZooEffect 1-jquery-photo-gallery-slideshow-flash allows Reflected XSS.This issue affects ZooEffect: from n/a through = 1.11...
CVE-2025-26954
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 1pluginjquery ZooEffect 1-jquery-photo-gallery-slideshow-flash allows Reflected XSS.This issue affects ZooEffect: from n/a through = 1.11...
CVE-2025-26954
CVE-2025-26954 : Reflected XSS in WordPress ZooEffect plugin (1pluginjquery ZooEffect) due to improper input neutralization in web page generation. Affected: ZooEffect plugin for Video player/Photo Gallery Slideshow (HTML5) versions n/a–1.11. CVSSv3.1 base score 7.1 (HIGH) with NETWORK attack vec...
CVE-2025-26954 WordPress ZooEffect plugin <= 1.11 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 1pluginjquery ZooEffect 1-jquery-photo-gallery-slideshow-flash allows Reflected XSS.This issue affects ZooEffect: from n/a through = 1.11...
CVE-2025-26954 WordPress ZooEffect plugin <= 1.11 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 1pluginjquery ZooEffect 1-jquery-photo-gallery-slideshow-flash allows Reflected XSS.This issue affects ZooEffect: from n/a through = 1.11...
PT-2025-16320 · Unknown · Jquery Zooeffect
Name of the Vulnerable Software and Affected Versions: 1pluginjquery ZooEffect versions n/a through 1.11 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables potential attackers t...
WordPress plugin ZooEffect 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...
ZooEffect 1.08 - HTTP Referer Reflected XSS
Description The ZooEffect Plugin for Video player, Photo Gallery Slideshow jQuery and audio / music / podcast – HTML5 WordPress plugin was affected by a HTTP Referer Reflected XSS security vulnerability...
WordPress ZooEffect Plugin <= 1.08 - Reflected XSS
This plugin is prone to a HTTP referer reflected cross site scripting vulnerability. Solution Update the plugin...
CVE-2011-5180
Cross-site scripting XSS vulnerability in wp-1pluginjquery.php in the ZooEffect plugin 1.01 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third party information. NOTE: this has been disputed by a...
Cross site scripting
Cross-site scripting XSS vulnerability in wp-1pluginjquery.php in the ZooEffect plugin 1.01 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third party information. NOTE: this has been disputed by a...
CVE-2011-5180
Cross-site scripting XSS vulnerability in wp-1pluginjquery.php in the ZooEffect plugin 1.01 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third party information. NOTE: this has been disputed by a...
CVE-2011-5180
The CVE-2011-5180 entry concerns the WordPress ZooEffect plugin (version 1.01) via an XSS in wp-1pluginjquery.php, exploitable through the page parameter. Affected component: the plugin’s PHP code handling page input; underlying impact is partial integrity exposure with no confidentiality or avai...