845 matches found
EUVD-2015-9291
Malware in sbrugna...
EUVD-2015-9156
Malware in sbrugna...
EUVD-2017-9729
Malware in sbrugna...
EUVD-2017-7233
Malware in sbrugna...
EUVD-2018-7676
Malware in sbrugna...
EUVD-2019-5927
Malware in sbrugna...
EUVD-2018-10104
Malware in sbrugna...
EUVD-2015-9295
Malware in sbrugna...
EUVD-2019-5919
Malware in sbrugna...
EUVD-2015-9266
Malware in sbrugna...
EUVD-2024-26804
Malicious code in bioql PyPI...
EUVD-2022-49734
Malicious code in bioql PyPI...
CVE-2024-29809
The imageurl parameter of the AJAX call to the editimagebwg action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the imageurl parameter is embedded within an existing JavaScript within the response allowing arbitrary JavaScript to be inserted and executed. The...
CVE-2024-6417
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/ajax.php?action=deleteuser. The manipulation of the argument id leads to sql injection. The attack may be launched...
CVE-2023-51049
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Abbsauth parameter at /admin/ajax.php...
CVE-2023-51050
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aproductauth parameter at /admin/ajax.php...
CVE-2015-9423
The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has XSS via wp-admin/admin-ajax.php?action=simplefieldsfieldtypepostdialogload PlugneditBGColor, PlugneditEditorMargin, plugneditwidth, pnemedcount, or plugneditcontent parameters...
CVE-2015-9332
The uninstall plugin before 1.2 for WordPress has CSRF to delete all tables via the wp-admin/admin-ajax.php?action=uninstall URI...
CVE-2015-9421
The olevmedia-shortcodes plugin before 1.1.9 for WordPress has CSRF with resultant XSS via the wp-admin/admin-ajax.php?action=omscpopup id parameter...
CVE-2015-9438
The display-widgets plugin before 2.04 for WordPress has XSS via the wp-admin/admin-ajax.php?action=dwshowwidget idbase, widgetnumber, or instance parameter...