44 matches found
EUVD-2013-0703
Malware in sbrugna...
EUVD-2024-45103
Malicious code in bioql PyPI...
EUVD-2024-35510
Malicious code in bioql PyPI...
EUVD-2024-52359
Malicious code in bioql PyPI...
CVE-2024-35752
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Enea Overclokk Stellissimo Text Box allows Stored XSS.This issue affects Stellissimo Text Box: from n/a through 1.1.4...
CVE-2013-0692
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote attackers to execute arbitrary code by connecting to the debug service...
CVE-2013-0693
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier performs network-beacon broadcasts, which allows remote attackers to obtain potentially sensitive informati...
CVE-2024-54233
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in overclokk Advanced Control Manager for WordPress by ItalyStrap advanced-control-manager allows Reflected XSS.This issue affects Advanced Control Manager for WordPress by ItalyStrap: from n/a throug...
CVE-2024-54233
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in overclokk Advanced Control Manager for WordPress by ItalyStrap advanced-control-manager allows Reflected XSS.This issue affects Advanced Control Manager for WordPress by ItalyStrap: from n/a throug...
CVE-2024-54233
CVE-2024-54233 describes a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Advanced Control Manager for WordPress by ItalyStrap (versions up to and including 2.16.0). The issue stems from improper input neutralization during web page generation, enabling reflected XSS. ...
CVE-2024-50541
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in overclokk Advanced Control Manager for WordPress by ItalyStrap advanced-control-manager allows Stored XSS.This issue affects Advanced Control Manager for WordPress by ItalyStrap: from n/a through =...
CVE-2024-50541
CVE-2024-50541 affects the WordPress plugin Advanced Control Manager for WordPress by ItalyStrap (versions
CVE-2024-50541 WordPress Advanced Control Manager plugin <= 2.16.0 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in overclokk Advanced Control Manager for WordPress by ItalyStrap advanced-control-manager allows Stored XSS.This issue affects Advanced Control Manager for WordPress by ItalyStrap: from n/a through =...
em2m.enea.it Cross Site Scripting vulnerability OBB-3945222
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Warning: Markopolo's Scam Targeting Crypto Users via Fake Meeting Software
A threat actor who goes by alias markopolo has been identified as behind a large-scale cross-platform scam that targets digital currency users on social media with information stealer malware and carries out cryptocurrency theft. The attack chains involve the use of a purported virtual meeting...
CVE-2024-35752
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Enea Overclokk Stellissimo Text Box allows Stored XSS.This issue affects Stellissimo Text Box: from n/a through 1.1.4...
CVE-2024-35752
CVE-2024-35752 is a Stored XSS in the Stellissimo Text Box used with Enea Overclokk Stellissimo Text Box. The description notes Improper Neutralization of Input During Web Page Generation and indicates the flaw affects Stellissimo Text Box versions up to 1.1.4 (and possibly earlier “n/a through 1...
CVE-2024-35752 WordPress Stellissimo Text Box plugin 1.1.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Enea Overclokk Stellissimo Text Box allows Stored XSS.This issue affects Stellissimo Text Box: from n/a through 1.1.4...
CVE-2024-35752 WordPress Stellissimo Text Box plugin 1.1.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Enea Overclokk Stellissimo Text Box allows Stored XSS.This issue affects Stellissimo Text Box: from n/a through 1.1.4...
PT-2024-26706 · Enea · Enea Overclokk Stellissimo Text Box
Name of the Vulnerable Software and Affected Versions: Enea Overclokk Stellissimo Text Box versions through 1.1.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS, allowing Stored XSS. This enables attackers t...