EUVD-2025-28156

Malicious code in bioql PyPI...

EUVD-2024-29257

Malicious code in bioql PyPI...

CVE-2024-31361

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.Net allows Stored XSS.This issue affects bunny.Net: from n/a through 2.0.1...

CVE-2025-48236

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.net bunny.net bunnycdn allows Stored XSS.This issue affects bunny.net: from n/a through = 2.3.0...

CVE-2025-48236

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.net bunny.net bunnycdn allows Stored XSS.This issue affects bunny.net: from n/a through = 2.3.0...

CVE-2025-48236

CVE-2025-48236 is a stored XSS in the bunny.net WordPress plugin (bunny.net

CVE-2025-48236 WordPress bunny.net plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.net bunny.net bunnycdn allows Stored XSS.This issue affects bunny.net: from n/a through = 2.3.0...

CVE-2025-48236 WordPress bunny.net plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.net bunny.net bunnycdn allows Stored XSS.This issue affects bunny.net: from n/a through = 2.3.0...

PT-2025-21950 · Bunny.Net · Bunny.Net

Name of the Vulnerable Software and Affected Versions: bunny.net versions n/a through 2.3.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This exposes users to cyber attacks and...

WordPress plugin bunny.net 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

bunny.net – WordPress CDN Plugin < 2.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The bunny.net – WordPress CDN Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2024-31361

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.Net allows Stored XSS.This issue affects bunny.Net: from n/a through 2.0.1...

CVE-2024-31361 WordPress bunny.net plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.Net allows Stored XSS.This issue affects bunny.Net: from n/a through 2.0.1...

CVE-2024-31361 WordPress bunny.net plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.Net allows Stored XSS.This issue affects bunny.Net: from n/a through 2.0.1...

CVE-2024-31361

CVE-2024-31361 is a stored XSS vulnerability in the bunny.net WordPress CDN Plugin that affects versions up to 2.0.1. The CVE description cites improper input neutralization during web page generation leading to stored cross-site scripting. The CVSSv3.1 vector is CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/...

WordPress Plugin bunny.net 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. WordPress Plugin bunny.net...

WordPress bunny.net Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS)

Software bunny.net Type Plugin Vulnerable versions = 2.0.1 Fixed in 2.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31361 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID eecba96cff40 Credits Joshua Chan Required privilege Administrator...