EUVD-2024-34108

Malicious code in bioql PyPI...

CVE-2024-11417

The dejure.org Vernetzungsfunktion plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.97.5. This is due to missing or incorrect nonce validation on the djoeinstellungenmenue function. This makes it possible for unauthenticated attackers to...

CVE-2024-11417 dejure.org Vernetzungsfunktion <= 1.97.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The dejure.org Vernetzungsfunktion plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.97.5. This is due to missing or incorrect nonce validation on the djoeinstellungenmenue function. This makes it possible for unauthenticated attackers to...

CVE-2024-11417

CVE-2024-11417 affects the dejure.org Vernetzungsfunktion WordPress plugin. The vulnerability is Cross-Site Request Forgery due to missing/incorrect nonce validation in djo_einstellungen_menue(), affecting all versions up to 1.97.5. This enables unauthenticated attackers to update settings and in...

WordPress dejure.org Vernetzungsfunktion plugin <= 1.97.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability discovered by SOPROBRO in WordPress Plugin dejure.org Vernetzungsfunktion versions = 1.97.5...

WordPress plugin dejure.org Vernetzungsfunktion 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...

dejure.org Cross Site Scripting vulnerability OBB-1338579

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

dejure.org Cross Site Scripting vulnerability OBB-1221954

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

dejure.org XSS vulnerability

Open Bug Bounty ID: OBB-550701 Description| Value ---|--- Affected Website:| dejure.org Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure based on...

dejure.org XSS vulnerability

Vulnerable URL: https://dejure.org/dienste/lex/BGB/439/1.html?suche=1zqjvdx" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 20895 VIP website status:| Yes Check dejure.org SSL connection:| Grade: A+ Coordinated...

Unfixed XSS vulnerability at dejure.org

Security researcher InSiDe, has submitted on 24/05/2007 a cross-site-scripting XSS vulnerability affecting dejure.org, which at the time of submission ranked 59008 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/05/2007. It is currently...