43 matches found
EUVD-2019-7198
Malware in sbrugna...
EUVD-2012-1652
Malware in sbrugna...
EUVD-2025-11572
Malicious code in bioql PyPI...
EUVD-2023-27823
Malicious code in bioql PyPI...
Malicious code in synthetics-sdk-broken-links (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-47730 Malicious code in synthetics-sdk-broken-links (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2023-23737
Unauth. SQL Injection SQLi vulnerability in MainWP MainWP Broken Links Checker Extension plugin = 4.0 versions...
CVE-2025-39440
Cross-Site Request Forgery CSRF vulnerability in Rajesh Broken Links Remover broken-links-remover allows Stored XSS.This issue affects Broken Links Remover: from n/a through = 1.2.2...
CVE-2025-39440
Cross-Site Request Forgery CSRF vulnerability in Rajesh Broken Links Remover broken-links-remover allows Stored XSS.This issue affects Broken Links Remover: from n/a through = 1.2.2...
CVE-2025-39440 WordPress Broken Links Remover plugin <= 1.2.2 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Rajesh Broken Links Remover broken-links-remover allows Stored XSS.This issue affects Broken Links Remover: from n/a through = 1.2.2...
CVE-2025-39440
CVE-2025-39440 represents a CSRF-to-Stored XSS vulnerability in the WordPress plugin Broken Links Remover, affecting versions up to 1.2.2. Public details confirm the flaw origin (CSRF) and the resulting stored XSS vector, with a CVSSv3.1 base score of 7.1 (HIGH). The Connected documents do not sp...
WordPress plugin Broken Links Remover 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
PT-2025-17007 · Unknown · Rajesh Broken Links Remover
Name of the Vulnerable Software and Affected Versions: Rajesh Broken Links Remover versions 1.2.2 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. Recommendations: For versions 1.2.2 and earlier, update to a version that fixes this issu...
Fedora: Security Advisory (FEDORA-2024-300397332b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 40 : llvm-test-suite (2024-300397332b)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-300397332b advisory. Remove ClamAV subdirectory because of viruses in input files: These were the findings: MultiSource/Applications/ClamAV/inputs/rtf-test/rtf1.rtf:...
Fedora 41 : llvm-test-suite (2024-6d9aba8c3c)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-6d9aba8c3c advisory. Remove ClamAV subdirectory because of viruses in input files: These were the findings: MultiSource/Applications/ClamAV/inputs/rtf-test/rtf1.rtf:...
GHSA-9JH5-QF84-X6PR Contao: Possible cookie sharing with external domains while checking protected pages for broken links
Impact If the crawler is set to crawl protected pages, it sends the cookie header to externals URLs. Patches Update to Contao 4.13.40 or 5.3.4. Workarounds Disable crawling protected pages. References https://contao.org/en/security-advisories/session-cookie-disclosure-in-the-crawler For more...
Contao: Possible cookie sharing with external domains while checking protected pages for broken links
Impact If the crawler is set to crawl protected pages, it sends the cookie header to externals URLs. Patches Update to Contao 4.13.40 or 5.3.4. Workarounds Disable crawling protected pages. References https://contao.org/en/security-advisories/session-cookie-disclosure-in-the-crawler For more...
CVE-2024-28235 Contao possible cookie sharing with external domains while checking protected pages for broken links
Contao is an open source content management system. Starting in version 4.9.0 and prior to versions 4.13.40 and 5.3.4, when checking for broken links on protected pages, Contao sends the cookie header to external urls as well, the passed options for the http client are used for all requests. Cont...
CVE-2024-28235 Contao possible cookie sharing with external domains while checking protected pages for broken links
Contao is an open source content management system. Starting in version 4.9.0 and prior to versions 4.13.40 and 5.3.4, when checking for broken links on protected pages, Contao sends the cookie header to external urls as well, the passed options for the http client are used for all requests. Cont...