13 matches found
EUVD-2025-26549
Malicious code in bioql PyPI...
EUVD-2024-29783
Malicious code in bioql PyPI...
EUVD-2025-2781
Malicious code in bioql PyPI...
CVE-2025-58617
Missing Authorization vulnerability in FAKTOR VIER F4 Media Taxonomies f4-media-taxonomies allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects F4 Media Taxonomies: from n/a through = 1.1.4...
CVE-2025-58617
Missing Authorization vulnerability in FAKTOR VIER F4 Media Taxonomies f4-media-taxonomies allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects F4 Media Taxonomies: from n/a through = 1.1.4...
PT-2025-35751
Name of the Vulnerable Software and Affected Versions: FAKTOR VIER F4 Media Taxonomies versions through 1.1.4 Description: A missing authorization issue exists in FAKTOR VIER F4 Media Taxonomies, allowing exploitation due to incorrectly configured access control security levels. Recommendations: ...
CVE-2024-31925
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FAKTOR VIER F4 Improvements allows Stored XSS.This issue affects F4 Improvements: from n/a through 1.8.0...
CVE-2025-22499
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FAKTOR VIER F4 Post Tree f4-tree allows Reflected XSS.This issue affects F4 Post Tree: from n/a through = 1.1.18...
CVE-2025-22499
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FAKTOR VIER F4 Post Tree f4-tree allows Reflected XSS.This issue affects F4 Post Tree: from n/a through = 1.1.18...
PT-2025-4494 · Unknown · Faktor Vier F4 Post Tree
The vulnerable software is FAKTOR VIER F4 Post Tree, with versions ranging from n/a to 1.1.18. The vulnerability is an Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting' XSS, which allows Reflected XSS. This vulnerability can be exploited by attacker...
CVE-2024-31925
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FAKTOR VIER F4 Improvements allows Stored XSS.This issue affects F4 Improvements: from n/a through 1.8.0...
CVE-2024-31925
CVE-2024-31925 refers to a Stored XSS in the F4 Improvements WordPress plugin. Affected versions are from n/a through 1.8.0; the issue arises from improper input neutralization during web page generation. It requires authenticated admin privileges and user interaction to exploit (Stored XSS). The...
PT-2024-24288 · Unknown · Faktor Vier F4 Improvements
Name of the Vulnerable Software and Affected Versions: FAKTOR VIER F4 Improvements versions 1.8.0 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows stored cross-site scripting XSS. This means that an attacker can inject...