29 matches found
EUVD-2025-17301
Malicious code in bioql PyPI...
CVE-2025-49425
Cross-Site Request Forgery CSRF vulnerability in Adrian Hanft Konami Easter Egg konami-easter-egg allows Stored XSS.This issue affects Konami Easter Egg: from n/a through = v0.4...
CVE-2025-49425
Cross-Site Request Forgery CSRF vulnerability in Adrian Hanft Konami Easter Egg konami-easter-egg allows Stored XSS.This issue affects Konami Easter Egg: from n/a through = v0.4...
CVE-2025-49425 WordPress Konami Easter Egg <= v0.4 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in Adrian Hanft Konami Easter Egg allows Stored XSS. This issue affects Konami Easter Egg: from n/a through v0.4...
CVE-2025-49425
CVE-2025-49425 concerns the Konami Easter Egg WordPress plugin. According to the provided documents, it involves a Cross-Site Request Forgery (CSRF) vulnerability that enables Stored XSS in the Konami Easter Egg feature (v0.4 and earlier). The exploit details are not publicly provided beyond this...
CVE-2025-49425 WordPress Konami Easter Egg plugin <= v0.4 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in Adrian Hanft Konami Easter Egg konami-easter-egg allows Stored XSS.This issue affects Konami Easter Egg: from n/a through = v0.4...
PT-2025-24258 · Konami · Konami Easter Egg
Name of the Vulnerable Software and Affected Versions: Konami Easter Egg versions n/a through v0.4 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS in the Konami Easter Egg. Recommendations: For versions n/a through v0.4, update to a version that...
WordPress plugin Konami Easter Egg 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
WordPress Konami Easter Egg plugin <= v0.4 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Miki Iwamoto in WordPress Plugin Konami Easter Egg versions = v0.4...
Malicious code in casino-luzern-easter-fronten (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9657421a13075a125eb2aaf87ac5a9a905e170cc658ec3669ce78bcc359327b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11872 Malicious code in casino-luzern-easter-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6e48867ff5b177606a9ae5bcb27cf273c464b77b0ac518170e08739c0f3f8f80 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in casino-luzern-easter-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6e48867ff5b177606a9ae5bcb27cf273c464b77b0ac518170e08739c0f3f8f80 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
“Free easter chocolate basket” is a social media scam after your personal details
Holidays inspire fraudsters and scammers to create timely and effective ways to string people along and get them to give up either their money or their personal information. This is the case in this chocolate-themed scam. Cadbury UK has issued a warning to its 315,000 followers on Twitter about a...
Easter Attack Affects Half a Billion Apple iOS Users via Chrome Bug
UPDATE About a half a billion Apple iOS users and counting have been hit by session-hijacking cybercriminals bent on serving up malware. They’re exploiting an unpatched flaw in the Chrome for iOS browser, to bypass sandboxing and hijack user sessions, targeting iPhone and iPad users. The attacks...
DST changes in Windows for Chile
DST changes in Windows for Chile Summary This article describes an update that makes daylight saving time DST changes in Windows for Chile. Before you install this update, see the Prerequisites section.This update applies to the following operating systems: Windows Server 2012 R2 Windows 8.1...
Vobot Clock Remote Code Execution Vulnerability
The Vobot Clock is a smart bedside alarm clock equipped with Amazon Alexa, Sleep Coach and Daily Routine programs. A remote code execution vulnerability exists in VOBOT CLOCK versions prior to 0.99.30. The vulnerability arises due to the use of plaintext HTTP to download the breakout program. A...
CVE-2018-6826
An issue was discovered on VOBOT CLOCK before 0.99.30 devices. Cleartext HTTP is used to download a breakout program, and therefore man-in-the-middle attackers can execute arbitrary code by watching for a local user to launch the Breakout Easter Egg feature, and then sending a crafted HTTP respon...
waitaki.govt.nz XSS vulnerability
Vulnerable URL: http://www.waitaki.govt.nz/our-council/consultation/easter-sunday-shop-trading/Pages/default.aspx?FollowSite=0=%27-confirm%27OPENBUGBOUNTY%27-%27 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
Easter Games for Kids: Puzzles - Base64 encoded String, Customized SSL, Exported ContentProvider vulnerabilities
HackApp vulnerability scanner discovered that application Easter Games for Kids: Puzzles published at the 'play' market has multiple vulnerabilities...
Easter Coloring Book - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Easter Coloring Book published at the 'play' market has multiple vulnerabilities...