40 matches found
EUVD-2010-1563
Malware in sbrugna...
EUVD-2015-9279
Malware in sbrugna...
EUVD-2024-45102
Malicious code in bioql PyPI...
CVE-2024-50540
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in demixpress dp AddThis dp-addthis allows Stored XSS.This issue affects dp AddThis: from n/a through = 1.0.2...
CVE-2015-9439
The addthis plugin before 5.0.13 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=addthissocialwidget pubid parameter...
CVE-2010-1536
Cross-site scripting XSS vulnerability in the AddThis Button module 5.x before 5.x-2.2 and 6.x before 6.x-2.9 for Drupal allows remote authenticated users, with administer addthis privileges, to inject arbitrary web script or HTML via unspecified vectors...
CVE-2024-50540
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in demixpress dp AddThis dp-addthis allows Stored XSS.This issue affects dp AddThis: from n/a through = 1.0.2...
CVE-2024-50540 WordPress (dp) AddThis plugin <= 1.0.2 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in demixpress dp AddThis dp-addthis allows Stored XSS.This issue affects dp AddThis: from n/a through = 1.0.2...
CVE-2024-50540 WordPress (dp) AddThis plugin <= 1.0.2 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in demixpress dp AddThis dp-addthis allows Stored XSS.This issue affects dp AddThis: from n/a through = 1.0.2...
CVE-2024-50540
CVE-2024-50540 is a Stored Cross-Site Scripting (XSS) vulnerability in the WordPress plugin (dp) AddThis, affecting versions 1.0.0 through 1.0.2. The issue arises from improper neutralization of input during web page generation, enabling stored XSS. Public sources in the connected documents confi...
WordPress plugin AddThis 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2024-34318 · Demixpress · Addthis
Name of the Vulnerable Software and Affected Versions: DemixPress dp AddThis versions 1.0.0 through 1.0.2 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject...
WordPress (dp) AddThis plugin <= 1.0.2 - Stored Cross Site Scripting (XSS) vulnerability
Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin dp AddThis versions = 1.0.2...
WordPress (dp) AddThis Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)
Software dp AddThis Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50540 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6745e3b01a1e Credits SOPROBRO Required privilege Contributor...
Malicious code in addthis-wordpress-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6d8ae72ce3501b8463193222bf9bebe2913ee52bf39fb10c8c9aa2f2049ebaa5 The OpenSSF Package Analysis project identified 'addthis-wordpress-plugin' @ 2.0.0 npm as malicious. It is considered malicious because: - The...
MAL-2024-1586 Malicious code in addthis-wordpress-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6d8ae72ce3501b8463193222bf9bebe2913ee52bf39fb10c8c9aa2f2049ebaa5 The OpenSSF Package Analysis project identified 'addthis-wordpress-plugin' @ 2.0.0 npm as malicious. It is considered malicious because: - The...
WordPress addthis plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. addthis is a social sharing button plugin used in it. A cross-site scripting vulnerability exists in WordPress addthis plugin versions...
CVE-2015-9439
The addthis plugin before 5.0.13 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=addthissocialwidget pubid parameter...
Cross site request forgery (csrf)
The addthis plugin before 5.0.13 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=addthissocialwidget pubid parameter...
CVE-2015-9439
CVE-2015-9439 affects the WordPress AddThis plugin prior to version 5.0.13. The vulnerability is a CSRF flaw that can lead to cross-site scripting via the wp-admin/options-general.php?page=addthis_social_widget pubid parameter. Multiple sources (NVD, Red Hat, CNVD, CVE listings, and WPVulnDB) cor...