EUVD-2024-50829

Malicious code in bioql PyPI...

CVE-2024-12405

The Export Customers Data plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 't' parameter in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

CVE-2024-12405 Export Customers Data <= 1.2.3 - Reflected Cross-Site Scripting

The Export Customers Data plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 't' parameter in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

CVE-2024-12405

CVE-2024-12405 : Reflected XSS in the WordPress plugin “Export Customers Data” (vulnerable up to 1.2.3) via the t parameter due to insufficient input sanitization and output escaping. Unauthenticated attackers can inject scripts that run when a user interacts with the page; no public fix/version ...

CVE-2024-12405 Export Customers Data <= 1.2.3 - Reflected Cross-Site Scripting

The Export Customers Data plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 't' parameter in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

WordPress plugin Export Customers Data 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...

PT-2024-17579 · WordPress · Export Customers Data Plugin For Wordpress

Name of the Vulnerable Software and Affected Versions: Export Customers Data plugin for WordPress versions up to, and including, 1.2.3 Description: The issue is related to Reflected Cross-Site Scripting via the t parameter due to insufficient input sanitization and output escaping. This allows...

WordPress Export Customers Data plugin <= 1.2.3 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Export Customers Data versions = 1.2.3...

An in-depth HTTP Strict Transport Security Tutorial

HSTS is an Internet standard and policy that tells the browser to only interact with a website using a secure HTTPS connection. Check out this article to learn how to leverage the security of your website and customers’ data and the security benefits you’ll gain from doing so...

Marketing firm CallX exposed customers data including call recordings

By Habiba Rashid CallX was using an unsecured Amazon Web Services S3 bucket to store audio client files. This is a post from HackRead.com Read the original post: Marketing firm CallX exposed customers data including call recordings...

Fashion retailer BrandBQ exposes 1 TB of customers, contractors data

By Sudais Asif The database was hosted on a misconfigured Elasticsearch server. This is a post from HackRead.com Read the original post: Fashion retailer BrandBQ exposes 1 TB of customers, contractors data...