33 matches found
EUVD-2016-9897
Malware in sbrugna...
EUVD-2021-12025
Malware in sbrugna...
EUVD-2013-2643
Malware in sbrugna...
EUVD-2025-7974
Malicious code in bioql PyPI...
MAL-2025-45504 Malicious code in paper-dropdown-menu (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
Malicious code in paper-dropdown-menu (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-9302 Malicious code in @sellerly-kit/dropdown-menu (npm)
The package @sellerly-kit/dropdown-menu was found to contain malicious code...
Malicious code in @sellerly-kit/dropdown-menu (npm)
The package @sellerly-kit/dropdown-menu was found to contain malicious code...
CVE-2021-25113
The Dropdown Menu Widget WordPress plugin through 1.9.7 does not have authorisation and CSRF checks when saving its settings, allowing low privilege users such as subscriber to update them. Due to the lack of sanitisation and escaping, it could also lead to Stored Cross-Site Scripting issues...
CVE-2013-2704
Cross-site request forgery CSRF vulnerability in the Dropdown Menu Widget plugin 1.9.1 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that insert cross-site scripting XSS sequences...
CVE-2025-30560
Cross-Site Request Forgery CSRF vulnerability in Sana Ullah jQuery Dropdown Menu jquery-drop-down-menu-plugin allows Stored XSS.This issue affects jQuery Dropdown Menu: from n/a through = 3.0...
CVE-2025-30560
Cross-Site Request Forgery CSRF vulnerability in Sana Ullah jQuery Dropdown Menu jquery-drop-down-menu-plugin allows Stored XSS.This issue affects jQuery Dropdown Menu: from n/a through = 3.0...
CVE-2025-30560
CVE-2025-30560 is a CSRF-to-Stored XSS vulnerability in the WordPress plugin jQuery Dropdown Menu (versions up to 3.0, affected from n/a through 3.0). The CVSS 3.1 score is 7.1 (High) with network attack vector, low attack complexity, no privileges required, but requires user interaction, and it ...
CVE-2025-30560 WordPress jQuery Dropdown Menu plugin <= 3.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Sana Ullah jQuery Dropdown Menu jquery-drop-down-menu-plugin allows Stored XSS.This issue affects jQuery Dropdown Menu: from n/a through = 3.0...
WordPress jQuery Dropdown Menu plugin <= 3.0 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin jQuery Dropdown Menu versions = 3.0...
WordPress plugin jQuery Dropdown Menu 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
Cross-site Scripting in jspreadsheet
The dropdown menu in jspreadsheet before v4.6.0 was discovered to be vulnerable to cross-site scripting XSS...
CVE-2022-48115
The dropdown menu in jspreadsheet before v4.6.0 was discovered to be vulnerable to cross-site scripting XSS...
CVE-2022-48115
CVE-2022-48115 affects jspreadsheet CE prior to 4.6.0, with a cross-site scripting (XSS) vulnerability in the dropdown/menu code path. Root cause identified as insufficient sanitization/handling in the dropdown implementation, enabling attacker-controlled input to execute scripts in a victim’s br...
Business Logic Error
froxlor/froxlor is vulnerable to Business Logic Errors. The vulnerability exists in admintemplates.php, which allows a remote attacker to manipulate the Language Dropdown Menu and change it to an arbitrary value...