7 matches found
EUVD-2025-25377
Malicious code in bioql PyPI...
EUVD-2025-10599
Malicious code in bioql PyPI...
CVE-2025-48152
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dimafreund Rentsyst rentsyst allows Reflected XSS.This issue affects Rentsyst: from n/a through = 2.0.100...
CVE-2025-48152
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dimafreund Rentsyst rentsyst allows Reflected XSS.This issue affects Rentsyst: from n/a through = 2.0.100...
CVE-2025-48152
CVE-2025-48152 describes a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin RentSyst (Rentsyst) version up to 2.0.100. The root cause is improper neutralization of input during web page generation, enabling XSS payloads to be reflected. The CVSS v3.1 vector indicates a N...
PT-2025-33914 · Rentsyst · Rentsyst
Name of the Vulnerable Software and Affected Versions: Rentsyst versions through 2.0.100 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, leading to Reflected Cross-site Scripting XSS. Recommendations: Update Rentsyst to a version later than...
PT-2025-15780 · Dimafreund · Rentsyst
Name of the Vulnerable Software and Affected Versions: dimafreund RentSyst versions n/a through 2.0.72 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on the web applicatio...