37 matches found
CVE-2025-15636
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in emarket-design YouTube Showcase youtube-showcase allows Stored XSS.This issue affects YouTube Showcase: from n/a through = 3.5.1...
EUVD-2025-209481
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Emarket-design YouTube Showcase allows Stored XSS.This issue affects YouTube Showcase: from n/a through 3.5.1...
CVE-2025-15636
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in emarket-design YouTube Showcase youtube-showcase allows Stored XSS.This issue affects YouTube Showcase: from n/a through = 3.5.1...
CVE-2025-15636
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Emarket-design YouTube Showcase allows Stored XSS.This issue affects YouTube Showcase: from n/a through 3.5.1...
PT-2026-33080
Name of the Vulnerable Software and Affected Versions Emarket-design YouTube Showcase versions n/a through 3.5.1 Description Improper neutralization of input during web page generation allows stored cross-site scripting XSS, a condition where malicious scripts are permanently stored on the target...
CVE-2023-40558
Cross-Site Request Forgery CSRF vulnerability in eMarket Design YouTube Video Gallery by YouTube Showcase plugin = 3.3.5 versions...
CVE-2025-64248
Missing Authorization vulnerability in emarket-design Request a Quote request-a-quote allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Request a Quote: from n/a through = 2.5.3...
EUVD-2025-203602
Missing Authorization vulnerability in emarket-design Request a Quote request-a-quote allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Request a Quote: from n/a through = 2.5.3...
CVE-2025-64248
Missing Authorization vulnerability in emarket-design Request a Quote request-a-quote allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Request a Quote: from n/a through = 2.5.3...
PT-2025-51396
Name of the Vulnerable Software and Affected Versions emarket-design versions through 2.5.3 Description An authorization issue exists in the Request a Quote functionality of emarket-design. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized...
EUVD-2025-25983
Malicious code in bioql PyPI...
EUVD-2025-30429
Malicious code in bioql PyPI...
EUVD-2025-31248
Malicious code in bioql PyPI...
EUVD-2023-45129
Malicious code in bioql PyPI...
EUVD-2025-25982
Malicious code in bioql PyPI...
PT-2025-39599
Name of the Vulnerable Software and Affected Versions WP Ticket Customer Service Software & Support Ticket System versions through 6.0.2 Description The software contains a flaw related to improper handling of user-supplied data during web page creation, which can lead to Stored Cross-site...
CVE-2025-58915
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in emarket-design Request a Quote request-a-quote allows Stored XSS.This issue affects Request a Quote: from n/a through = 2.5.0...
CVE-2025-58915
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in emarket-design Request a Quote request-a-quote allows Stored XSS.This issue affects Request a Quote: from n/a through = 2.5.0...
CVE-2025-58915
CVE-2025-58915 affects multiple WordPress plugins from eMarket Design including YouTube Showcase . The vulnerability is an Authenticated Stored Cross-Site Scripting (XSS) issue in input handling during web page generation. The Wordfence report lists this as stored XSS with an attack surface invol...
PT-2025-39107
Name of the Vulnerable Software and Affected Versions Emarket-design YouTube Showcase versions through 3.5.0 Description The software contains a flaw related to improper input handling during web page generation, leading to a Cross-site Scripting XSS issue. Specifically, the vulnerability allows...