2673 matches found
EUVD-2025-3394
Malicious code in bioql PyPI...
EUVD-2023-56822
Malicious code in bioql PyPI...
EUVD-2024-32938
Malicious code in bioql PyPI...
EUVD-2022-34954
Malicious code in bioql PyPI...
EUVD-2025-8192
Malicious code in bioql PyPI...
CVE-2025-61792
Quadient DS-700 iQ devices through 2025-09-30 might have a race condition during the quick clicking of in order the Question Mark button, the Help Button, the About button, and the Help Button, leading to a transition out of kiosk mode into local administrative access. NOTE: the reporter indicate...
CVE-2025-61792
Quadient DS-700 iQ devices through 2025-09-30 might have a race condition during the quick clicking of in order the Question Mark button, the Help Button, the About button, and the Help Button, leading to a transition out of kiosk mode into local administrative access. NOTE: the reporter indicate...
CVE-2025-61792
Quadient DS-700 iQ devices through 2025-09-30 might have a race condition during the quick clicking of in order the Question Mark button, the Help Button, the About button, and the Help Button, leading to a transition out of kiosk mode into local administrative access. NOTE: the reporter indicate...
CVE-2025-61792
Quadient DS-700 iQ devices up to 2025-09-30 may have a race condition when rapidly clicking the sequence of Question Mark → Help → About → Help, which could exit kiosk mode to local administrative access. The issue is described as sporadic during limited testing, with no exploits or detailed vect...
PT-2025-40032
Name of the Vulnerable Software and Affected Versions Quadient DS-700 iQ devices through 2025-09-30 Description Quadient DS-700 iQ devices may experience a race condition when quickly clicking the Question Mark button, the Help Button, the About button, and the Help Button in sequence. This can...
CVE-2025-58227
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alexander Lueken Podlove Subscribe button podlove-subscribe-button allows Stored XSS.This issue affects Podlove Subscribe button: from n/a through = 1.3.11...
CVE-2025-58666
Missing Authorization vulnerability in Kommo Website Chat Button: Kommo integration website-chat-button-kommo-integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Website Chat Button: Kommo integration: from n/a through = 1.3.1...
CVE-2025-58666
Missing Authorization vulnerability in Kommo Website Chat Button: Kommo integration website-chat-button-kommo-integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Website Chat Button: Kommo integration: from n/a through = 1.3.1...
CVE-2025-58227
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alexander Lueken Podlove Subscribe button podlove-subscribe-button allows Stored XSS.This issue affects Podlove Subscribe button: from n/a through = 1.3.11...
WordPress Podlove Subscribe button Plugin <= 1.3.11 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by zaim in WordPress Plugin Podlove Subscribe button versions = 1.3.11...
WordPress Website Chat Button: Kommo integration Plugin <= 1.3.1 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Peter Thaleikis in WordPress Plugin Website Chat Button: Kommo integration versions = 1.3.1...
CVE-2025-58227 WordPress Podlove Subscribe button Plugin <= 1.3.11 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alexander Lueken Podlove Subscribe button podlove-subscribe-button allows Stored XSS.This issue affects Podlove Subscribe button: from n/a through = 1.3.11...
CVE-2025-58227 WordPress Podlove Subscribe button Plugin <= 1.3.11 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alexander Lueken Podlove Subscribe button podlove-subscribe-button allows Stored XSS.This issue affects Podlove Subscribe button: from n/a through = 1.3.11...
CVE-2025-58227
CVE-2025-58227: Stored XSS in Podlove Subscribe button for WordPress due to improper input neutralization during page generation. Affected: Podlove Subscribe button plugin up to version 1.3.11 (vulnerable line items). Remediation: patch released (plugin update to fix the issue). The entry is back...
CVE-2025-58666 WordPress Website Chat Button: Kommo integration Plugin <= 1.3.1 - Broken Access Control Vulnerability
Missing Authorization vulnerability in Kommo Website Chat Button: Kommo integration website-chat-button-kommo-integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Website Chat Button: Kommo integration: from n/a through = 1.3.1...