181 matches found
Malicious code in @zalastax/nolb-cup (npm)
The package @zalastax/nolb-cup was found to contain malicious code...
MAL-2025-11057 Malicious code in @zalastax/nolb-cup (npm)
The package @zalastax/nolb-cup was found to contain malicious code...
MAL-2025-9902 Malicious code in @zalastax/nolb-_cup (npm)
The package @zalastax/nolb-cup was found to contain malicious code...
Performance of Machine Learning Classifiers for Anomaly Detection in Cyber Security Applications
This work empirically evaluates machine learning models on two imbalanced public datasets KDDCUP99 and Credit Card Fraud 2013. The method includes data preparation, model training, and evaluation, using an 80/20 train/test split. Models tested include eXtreme Gradient Boosting XGB, Multi Layer...
CVE-2025-22794
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.9...
CVE-2025-22794
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.8...
CVE-2025-22794 WordPress World Cup Predictor Plugin <= 1.9.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Landoweb Programador World Cup Predictor allows Reflected XSS. This issue affects World Cup Predictor: from n/a through 1.9.6...
CVE-2025-22794
CVE-2025-22794 affects WordPress World Cup Predictor plugin by Landoweb. The disclosed data indicate a Reflected Cross‑Site Scripting (XSS) vulnerability caused by improper neutralization of input during web page generation, impacting World Cup Predictor versions up to 1.9.6 (and possibly earlier...
CVE-2025-22794 WordPress World Cup Predictor Plugin <= 1.9.8 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.8...
WordPress plugin World Cup Predictor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-4704 · Unknown · Landoweb Programador World Cup Predictor
Name of the Vulnerable Software and Affected Versions: Landoweb Programador World Cup Predictor versions 1.9.6 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Reflected Cross-site Scripting XSS. This means that an...
WordPress World Cup Predictor Plugin <= 1.9.8 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin World Cup Predictor versions = 1.9.8...
The vulnerability of the Imagine Cup platform’s code execution mechanism for Microsoft Azure Functions allows a hacker to gain unauthorized access to protected information.
The vulnerability of the Imagine Cup platform’s Microsoft Azure Functions component is related to lack of access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk
A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to gain root access under certain circumstances. The vulnerability, tracked as CVE-2024-9486 CVSS score: 9.8, has been addressed in version 0.1.38. The project maintainers...
Microsoft Imagine Cup site information disclosure vulnerability
Microsoft Imagine Cup is a developer tool from Microsoft Corporation USA. The Microsoft Imagine Cup site suffers from an information disclosure vulnerability that stems from incorrect access control. An attacker could exploit the vulnerability to elevate privileges over a network...
CVE-2024-38204
Improper access control in Imagine Cup allows an authorized attacker to elevate privileges over a network...
CVE-2024-38204 Imagine Cup site Information Disclosure Vulnerability
...
CVE-2024-38204 Imagine Cup site Information Disclosure Vulnerability
...
CVE-2024-38204
CVE-2024-38204 is an improper access control vulnerability affecting Microsoft Imagine Cup (site). Connected sources confirm an authorized attacker could elevate privileges over a network due to insufficient access control. Microsoft’s MSRC entry and other feeds link this CVE to Microsoft Azure F...
Imagine Cup site Information Disclosure Vulnerability
Improper access control in Imagine Cup allows an authorized attacker to elevate privileges over a network...