MAL-2025-656 Malicious code in fabric-shim-docs (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...

Malicious code in opensea-developer-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 692ba66619407967d692be9c0e70b5b297806cf1e398766ee1556657af6feba1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-56288

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fahad Mahmood WP Docs allows Stored XSS.This issue affects WP Docs: from n/a through 2.2.1...

CVE-2024-56288

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fahad Mahmood WP Docs wp-docs allows Stored XSS.This issue affects WP Docs: from n/a through = 2.2.1...

CVE-2024-56288 WordPress WP Docs plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fahad Mahmood WP Docs wp-docs allows Stored XSS.This issue affects WP Docs: from n/a through = 2.2.1...

CVE-2024-56288 WordPress WP Docs plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fahad Mahmood WP Docs allows Stored XSS.This issue affects WP Docs: from n/a through 2.2.1...

CVE-2024-56288

CVE-2024-56288 is a Stored XSS in the WP Docs WordPress plugin (Fahad Mahmood). Affected: WP Docs versions up to 2.2.1. Root cause: Improper neutralization of input during web page generation. Impact per sources: cross-site scripting could affect authenticated users; no exploit details provided b...

WordPress plugin WP Docs 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...

WordPress WP Docs plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by b4orvn Patchstack Alliance in WordPress Plugin WP Docs versions = 2.2.1...

Malicious code in lana-docs-site (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware accb6c4448ea69a1e84f45256921e0bca2f42e0f2cb6ad93d0e60ed843b843f0 Any computer that has this package install...

Malicious code in mx-exchange-docs (npm)

This package exfils sensitive data to a attacker-controlled domain via index.js. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 86097f31b903420b95d8b161339744186e28bf4894231a435e0889e51ef07a8e Any computer that has this package installed or running should be...

MAL-2024-12171 Malicious code in mx-exchange-docs (npm)

This package exfils sensitive data to a attacker-controlled domain via index.js. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 86097f31b903420b95d8b161339744186e28bf4894231a435e0889e51ef07a8e Any computer that has this package installed or running should be...

[SECURITY] Fedora 40 Update: python3-docs-3.12.8-1.fc40

The python3-docs package contains documentation on the Python 3 programming language and interpreter...

Fedora 40 : python3-docs / python3.12 (2024-82a696ca59)

The remote Fedora 40 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-82a696ca59 advisory. Update to 3.12.8 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

Malicious code in cosmos-hub-docs-site (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a34cccaa0f1542346f9bde458f8b0160dfc0e0d1d8718d8acc264d706162d8a3 The OpenSSF Package Analysis project identified 'cosmos-hub-docs-site' @ 2.0.0 npm as malicious. It is considered malicious because: - The packa...

CVE-2024-12635

The WP Docs plugin for WordPress is vulnerable to time-based SQL Injection via the 'dirid' parameter in all versions up to, and including, 2.2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

CVE-2024-12635

The WP Docs plugin for WordPress is vulnerable to time-based SQL Injection via the 'dirid' parameter in all versions up to, and including, 2.2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

CVE-2024-12635 WP Docs <= 2.2.0 - Authenticated (Subscriber+) Time-Based SQL Injection via 'dir_id'

The WP Docs plugin for WordPress is vulnerable to time-based SQL Injection via the 'dirid' parameter in all versions up to, and including, 2.2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

CVE-2024-12635

CVE-2024-12635 concerns the WP Docs plugin for WordPress. The vulnerability is a time-based SQL Injection via the dir_id parameter in all versions up to and including 2.2.0, caused by insufficient escaping in the user-supplied input and inadequate preparation in the SQL query. It allows authentic...

WordPress plugin WP Docs SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...