4 matches found
PT-2025-44577
Name of the Vulnerable Software and Affected Versions Qzzr Shortcode Plugin for WordPress versions prior to 1.0.2 Description The Qzzr Shortcode Plugin for WordPress is susceptible to Stored Cross-Site Scripting through the 'qzzr' shortcode. This is a result of inadequate input sanitization and...
CVE-2023-6677
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Oduyo Financial Technology Online Collection allows SQL Injection.This issue affects Online Collection: before v.1.0.2...
PT-2018-18719 · Synology · Synology Drive
Name of the Vulnerable Software and Affected Versions: Synology Drive versions prior to 1.0.2-10275 Description: The issue allows remote authenticated users to inject arbitrary web script or HTML via a malicious file name, exploiting a cross-site scripting XSS vulnerability in the File Sharing...
PT-2017-17567 · Irssi +1 · Irssi +1
Name of the Vulnerable Software and Affected Versions: Irssi versions 1.x before 1.0.2 Description: The issue in Irssi's netjoin processing allows attackers to cause a denial of service and possibly execute arbitrary code. Recommendations: For Irssi versions 1.x before 1.0.2, update to version...