EUVD-2017-8931

Malware in sbrugna...

EUVD-2023-55576

Malicious code in bioql PyPI...

CVE-2023-50843

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Clockwork Clockwork SMS Notfications.This issue affects Clockwork SMS Notfications: from n/a through 3.0.4...

CVE-2023-50843

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Clockwork Clockwork SMS Notfications.This issue affects Clockwork SMS Notfications: from n/a through 3.0.4...

CVE-2023-50843

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Clockwork Clockwork SMS Notfications.This issue affects Clockwork SMS Notfications: from n/a through 3.0.4...

WordPress Plugin Clockwork SMS Notfications SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Clockwork SMS Notfications...

WordPress Clockwork SMS Notfications Plugin <= 3.0.4 is vulnerable to SQL Injection

Software Clockwork SMS Notfications Type Plugin Vulnerable versions = 3.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2023-50843 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 56466c20b5e4 Credits Mika Required privilege Administrator...

Multiple WordPress Plugin Cross-Site Scripting Vulnerabilities

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports setting up personal blogging sites on servers with PHP and MySQL.WordPress Clockwork Free and Paid SMS Notifications and so on are used in which different types of SMS...

CVE-2017-17780

The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...

CVE-2017-17780

The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...

CVE-2017-17780

The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...

Design/Logic Flaw

The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...

CVE-2017-17780

CVE-2017-17780 describes a Reflected XSS in the Clockwork SMS WordPress integration. The vulnerability resides in clockwork-test-message.php and is triggered by a crafted value in the GET parameter to, e.g., wp-admin/admin.php?page=clockwork_test_message. The issue affects multiple plugins that e...

CVE-2017-17780

The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...

WordPress Two-Factor Authentication – Clockwork SMS plugin <=1.0.3 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability found by Elias Dimopoulos in WordPress Two-Factor Authentication – Clockwork SMS plugin versions =1.0.3 Solution Update the WordPress Two-Factor Authentication – Clockwork SMS plugin to the latest available version at least 1.1.0...

WordPress Gravity Forms – Clockwork SMS plugin <=2.2 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability found by Elias Dimopoulos in WordPress Gravity Forms – Clockwork SMS plugin versions =2.2. Solution Update the WordPress Gravity Forms – Clockwork SMS plugin to the latest available version at least 2.4.0...

WordPress Clockwork SMS Notfications plugin <=2.0.3 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability found by Elias Dimopoulos in WordPress Clockwork SMS Notfications plugin versions =2.0.3. Solution Update the WordPress Clockwork SMS Notfications plugin to the latest available version at least 3.0.0...

WordPress Formidable – Clockwork SMS plugin <=1.0.3 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability found by Elias Dimopoulos in WordPress Formidable – Clockwork SMS plugin versions =1.0.3. Solution Update the WordPress Formidable – Clockwork SMS plugin to the latest available version at least 1.1.0...

WordPress Booking Calendar – Clockwork SMS plugin <=1.0.5 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability found by Elias Dimopoulos in WordPress Booking Calendar – Clockwork SMS plugin versions =1.0.5. Solution Update the WordPress Booking Calendar – Clockwork SMS plugin to the latest available version at least 1.1.0...

WordPress Fast Secure Contact Form – Clockwork SMS plugin <=2.1.2 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability found by Elias Dimopoulos in WordPress Fast Secure Contact Form – Clockwork SMS plugin versions =2.1.2. Solution Update the WordPress Fast Secure Contact Form – Clockwork SMS plugin to the latest available version at least 2.4.0...