EUVD-2025-31228

Malicious code in bioql PyPI...

CVE-2025-60185

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kontur.us kontur Admin Style kontur-admin-style allows Stored XSS.This issue affects kontur Admin Style: from n/a through = 1.0.4...

WordPress kontur Admin Style Plugin <= 1.0.4 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin kontur Admin Style versions = 1.0.4...

CVE-2025-60185

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kontur.us kontur Admin Style kontur-admin-style allows Stored XSS.This issue affects kontur Admin Style: from n/a through = 1.0.4...

CVE-2025-60185 WordPress kontur Admin Style Plugin <= 1.0.4 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kontur.us kontur Admin Style kontur-admin-style allows Stored XSS.This issue affects kontur Admin Style: from n/a through = 1.0.4...

CVE-2025-60185

CVE-2025-60185 is a stored XSS in the kontur Admin Style WordPress plugin (vulnerable up to and including 1.0.4). The root cause is improper neutralization of input during web page generation, enabling an attacker with network access and high privileges to trigger XSS upon user interaction. The i...

CVE-2025-60185 WordPress kontur Admin Style Plugin <= 1.0.4 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kontur.us kontur Admin Style kontur-admin-style allows Stored XSS.This issue affects kontur Admin Style: from n/a through = 1.0.4...

WordPress plugin kontur Admin Style 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

PT-2025-39619

Name of the Vulnerable Software and Affected Versions kontur Admin Style versions through 1.0.4 Description A flaw exists in kontur Admin Style that allows for Stored Cross-Site Scripting XSS. This issue arises from improper handling of user-supplied data during web page creation. The vulnerabili...

CVE-2022-1814

The WP Admin Style WordPress plugin through 0.1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed...

CVE-2022-1814

The WP Admin Style WordPress plugin through 0.1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed...

CVE-2022-1814

The WP Admin Style WordPress plugin through 0.1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed...

Cross site scripting

The WP Admin Style WordPress plugin through 0.1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed...

CVE-2022-1814

The CVE-2022-1814 entry concerns the WordPress plugin WP Admin Style (versions up to 0.1.2). The root cause is failure to sanitize/escape certain plugin settings, which can allow stored XSS by high-privilege users (e.g., admins) when unfiltered_html is disallowed. Several sources (Red Hat, CNVD, ...

CVE-2022-1814 WP Admin Style <= 0.1.2 - Admin+ Stored Cross-Site Scripting

The WP Admin Style WordPress plugin through 0.1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed...

WordPress plugin WP Admin Style 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Admin Style plugin version 0.1.2 and prior versions contain a cross-site scripting...

WordPress WP Admin Style plugin <= 0.1.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Kishore Hariram in WordPress WP Admin Style plugin versions = 0.1.2. Solution Deactivate and delete. This plugin has been closed as of May 18, 2022 and is not available for download. This closure is temporary, pending a ful...

Authentication Bypass Vulnerability in CFCMS Editor

CFCMS is a self-service website building platform with full Flash as its core. There is an authentication bypass vulnerability in the editor \xmlEditor\eWebEditor\AdminStyle.asp used in CFCMS, which can be exploited by attackers to bypass the authentication and gain server privileges with Getshel...

Chi youdao professional travel system v1. 0 vulnerability-vulnerability warning-the black bar safety net

Default information: “Chi youdao”professional travel site system is wise to have team professional development, for the current tourism platform for powerful features developers! Back office management Background path: admin/login. asp Administrator: user:admin Password: psw:1 2 3 4 5 6 下载 地址...