23 matches found
EUVD-2023-26814
Malicious code in bioql PyPI...
EUVD-2023-26820
Malicious code in bioql PyPI...
CVE-2023-22691
Cross-Site Request Forgery CSRF vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin = v2.1 versions...
CVE-2019-5993
Cross-site request forgery CSRF vulnerability in Category Specific RSS feed Subscription version v2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...
CVE-2023-22685
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin = v2.2 versions...
CVE-2023-22685
CVE-2023-22685 represents an authenticated stored cross-site scripting (XSS) vulnerability in the WordPress plugin Category Specific RSS feed Subscription (Category Specific RSS feed Menu) for versions
PT-2023-18630 · Tips Tricks Hq · Category Specific Rss Feed Subscription
Name of the Vulnerable Software and Affected Versions: Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin versions = v2.2 Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with admin privileg...
WordPress Plugin Category Specific RSS feed Subscription 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
CVE-2023-22691
Cross-Site Request Forgery CSRF vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin = v2.1 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin = v2.1 versions...
PT-2023-18636 · Tips Tricks Hq · Category Specific Rss Feed Subscription
Name of the Vulnerable Software and Affected Versions: Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin versions = 2.1 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user...
SUSE CVE-2009-3266
Opera before 10.01 does not properly restrict HTML in a 1 RSS or 2 Atom feed, which allows remote attackers to conduct cross-site scripting XSS attacks, and conduct cross-zone scripting attacks involving the Feed Subscription Page to read feeds or create feed subscriptions, via a crafted feed,...
CVE-2019-5993
Cross-site request forgery CSRF vulnerability in Category Specific RSS feed Subscription version v2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Category Specific RSS feed Subscription version v2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...
CVE-2019-5993
Cross-site request forgery CSRF vulnerability in Category Specific RSS feed Subscription version v2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...
Category Specific RSS feed Subscription <= 2.0 - Cross-Site Request Forgery (CSRF)
The Category Specific RSS feed Subscription WordPress plugin was affected by a Cross-Site Request Forgery CSRF security vulnerability...
FreeBSD : opera -- multiple vulnerabilities (2fda6bd2-c53c-11de-b157-001999392805)
Opera Team Reports : - Fixed an issue where certain domain names could allow execution of arbitrary code, as reported by Chris Weber of Casaba Security - Fixed an issue where scripts can run on the feed subscription page, as reported by Inferno %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
Code Execution Bug Bites Opera Browser
On the same day Mozilla shipped a Firefox update to fix multiple critical vulnerabilities, Opera dropped a major patch to fix three documented flaws, including a memory corruption issue that exposes users to code execution attacks. Here are the raw details: Advisory 1: Specially crafted domain...
Opera < 10.01 Multiple Vulnerabilities
Binary data 5217.prm...
opera -- multiple vulnerabilities
Opera Team Reports: Fixed an issue where certain domain names could allow execution of arbitrary code, as reported by Chris Weber of Casaba Security Fixed an issue where scripts can run on the feed subscription page, as reported by Inferno...