110 matches found
openSUSE 16 Security Update : act (openSUSE-SU-2025-20138-1)
The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2025-20138-1 advisory. - CVE-2025-47913: Prevent panic in embedded golang.org/x/crypto/ssh/agent client when receiving unexpected message types for key listing or signing...
EUVD-2025-9271
Malicious code in bioql PyPI...
CVE-2025-31759
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BooSpot Boo Recipes boo-recipes allows Stored XSS.This issue affects Boo Recipes: from n/a through = 2.4.1...
WordPress Boo Recipes plugin <= 2.4.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Boo Recipes versions = 2.4.1...
CVE-2025-31759
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BooSpot Boo Recipes boo-recipes allows Stored XSS.This issue affects Boo Recipes: from n/a through = 2.4.1...
CVE-2025-31759 WordPress Boo Recipes plugin <= 2.4.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BooSpot Boo Recipes boo-recipes allows Stored XSS.This issue affects Boo Recipes: from n/a through = 2.4.1...
CVE-2025-31759 WordPress Boo Recipes plugin <= 2.4.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BooSpot Boo Recipes allows Stored XSS. This issue affects Boo Recipes: from n/a through 2.4.1...
CVE-2025-31759
CVE-2025-31759 describes a Stored XSS in the WordPress plugin Boo Recipes affecting versions up to 2.4.1. The vulnerability stems from improper input neutralization during web page generation , enabling an attacker with authenticated access to inject scripts into stored content. The connected Wor...
WordPress plugin Boo Recipes 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-14146 · Unknown · Boospot Boo Recipes
Name of the Vulnerable Software and Affected Versions: BooSpot Boo Recipes versions n/a through 2.4.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can inje...
SUSE-SU-2024:4079-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Update to version 2.46.3 bsc1232747: - CVE-2024-44244: Processing maliciously crafted web content may lead to an unexpected process crash. - CVE-2024-44296: Processing maliciously crafted web content may prevent Content Security Policy from...
openSUSE Security Advisory (openSUSE-SU-2024:0312-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2024:0304-1 Security update for htmldoc
This update for htmldoc fixes the following issues: - CVE-2024-45508: Fixed an out-of-bounds write in parseparagraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node boo1230022...
OPENSUSE-SU-2024:0303-1 Security update for htmldoc
This update for htmldoc fixes the following issues: - CVE-2024-45508: Fixed an out-of-bounds write in parseparagraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node boo1230022...
OPENSUSE-SU-2024:0282-1 Security update for python-Django
This update for python-Django fixes the following issues: CVE-2024-45230: Fixed Potential denial-of-service vulnerability in django.utils.html.urlize boo1229823 CVE-2024-45231: Potential user email enumeration via response status on password reset boo1229824...
OPENSUSE-SU-2024:0161-1 Security update for plasma5-workspace
plasma5-workspace was updated to fix the following issue: - Fixed ksmserver authentication CVE-2024-36041, boo1225774. - Fixed a regression introduced by the preceding change kde487912, boo1226110:...
openSUSE 15 Security Update : libqt5-qtnetworkauth (openSUSE-SU-2024:0143-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2024:0143-1 advisory. - CVE-2024-36048: Fixed data race and poor seeding in generateRandomString boo1224782. Tenable has extracted the preceding description block directly fro...
openSUSE: Security Advisory for rxvt (openSUSE-SU-2023:0306-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
boo-bee.jp Cross Site Scripting vulnerability OBB-3563880
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
peek-a-boo-magazine.be Cross Site Scripting vulnerability OBB-2288405
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...