15 matches found
EUVD-2025-24198
Malicious code in bioql PyPI...
WordPress Wp chart generator plugin cross-site scripting vulnerability
WordPress Wp chart generator plugin is a plugin for generating charts in WordPress blogs. Users can create multiple charts through the backend admin interface and embed them in posts or pages using the generated shortcode. A cross-site scripting vulnerability exists in the WordPress Wp chart...
CVE-2025-8685
The Wp chart generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpchart shortcode in all versions up to, and including, 1.0.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-8685
The Wp chart generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpchart shortcode in all versions up to, and including, 1.0.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-8685
CVE-2025-8685 — The WordPress plugin Wp chart generator (versions up to 1.0.4) is vulnerable to Stored Cross-Site Scripting via the plugin’s wpchart shortcode due to insufficient input sanitization and output escaping on user attributes. Exploitation requires authentication at contributor level o...
WordPress plugin Wp chart generator 跨站脚本漏洞
WordPress Wp chart generator plugin is a plugin for generating charts in WordPress blogs. Users can create multiple charts through the backend admin interface and embed them in posts or pages using the generated shortcode. A cross-site scripting vulnerability exists in the WordPress Wp chart...
PT-2025-32620 · WordPress · Wp Chart Generator
Name of the Vulnerable Software and Affected Versions: Wp chart generator versions up to and including 1.0.4 Description: The Wp chart generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting through the plugin’s wpchart shortcode due to insufficient input sanitization and outp...
WordPress Wp chart generator plugin <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpchart Shortcode vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via wpchart Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Wp chart generator versions = 1.0.4...
The vulnerability of the `include/chart_generator.php` script of the Pandora Console component, a monitoring and management system for IT environments in the Pandora FMS framework. This script allows attackers to bypass security restrictions and execute arbitrary SQL code.
The vulnerability of the include/chartgenerator.php implementation of the Pandora Console component in the Pandora FMS monitoring and management system is related to the lack of measures taken to protect the SQL query structure during the processing of the sessionid parameter. Exploiting this...
Exploit for SQL Injection in Artica Pandora_Fms
CVE-2021-32099 CVE-2021-32099 POC : http://localhost:8000/pan...
Artica Pandora FMS SQL注入漏洞
Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. An SQL injection vulnerability exists in Artica Pandora FMS version 742, which allows unauthenticated attackers to escalat...
CVE-2020-26518
Artica Pandora FMS before 743 allows unauthenticated attackers to conduct SQL injection attacks via the pandoraconsole/include/chartgenerator.php sessionid parameter...
CVE-2020-26518
Artica Pandora FMS before 743 allows unauthenticated attackers to conduct SQL injection attacks via the pandoraconsole/include/chartgenerator.php sessionid parameter...
[RT-SA-2012-001] Bugzilla: Cross-Site Scripting in Chart Generator
Advisory: Bugzilla: Cross-Site Scripting in Chart Generator RedTeam Pentesting discovered a Cross-Site Scripting XSS vulnerability in Bugzilla's chart generator during a penetration test. If attackers can persuade users to click on a prepared link or redirected them to such a link from an...
Bugzilla Chart Generator Cross Site Scripting
Advisory: Bugzilla: Cross-Site Scripting in Chart Generator RedTeam Pentesting discovered a Cross-Site Scripting XSS vulnerability in Bugzilla's chart generator during a penetration test. If attackers can persuade users to click on a prepared link or redirected them to such a link from an...