3027 matches found
EUVD-2025-28944
Malicious code in bioql PyPI...
EUVD-2023-0489
Malicious code in bioql PyPI...
EUVD-2023-29487
Malicious code in bioql PyPI...
EUVD-2022-42860
Malicious code in bioql PyPI...
EUVD-2021-28079
Malicious code in bioql PyPI...
EUVD-2025-10106
Malicious code in bioql PyPI...
EUVD-2022-35480
Malicious code in bioql PyPI...
EUVD-2022-47727
Malicious code in bioql PyPI...
EUVD-2025-24463
Malicious code in bioql PyPI...
EUVD-2025-5680
Malicious code in bioql PyPI...
EUVD-2025-31742
Malicious code in bioql PyPI...
[SECURITY] Fedora 42 Update: bird-3.1.4-1.fc42
BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border Gateway Protocol BGPv4, Routing Information Protocol RIPv2, RIPng, Open Shortest Path First protocol OSPFv2, OSPFv3, Babel Routing Protocol Babel, Bidirectional Forwarding Detection BFD, IPv6 router advertisements, static...
CVE-2025-28016
A Reflected Cross-Site Scripting XSS vulnerability was found in loginsystem/edit-profile.php of the PHPGurukul User Registration & Login and User Management System V3.3. This vulnerability allows remote attackers to execute arbitrary JavaScript code via the fname, lname, and contact parameters...
[SECURITY] Fedora 43 Update: bird-3.1.4-1.fc43
BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border Gateway Protocol BGPv4, Routing Information Protocol RIPv2, RIPng, Open Shortest Path First protocol OSPFv2, OSPFv3, Babel Routing Protocol Babel, Bidirectional Forwarding Detection BFD, IPv6 router advertisements, static...
CVE-2025-43820
Multiple cross-site scripting XSS vulnerabilities in the Calendar widget when inviting users to a event in Liferay Portal 7.4.3.35 through 7.4.3.110, and Liferay DXP 2023.Q4.0 through 2023.Q4.4, 2023.Q3.1 through 2023.Q3.6, 7.4 update 35 through update 92, and 7.3 update 25 through update 35 allo...
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS when inviting users to an event. An attacker can execute arbitrary web script or inject HTML by supplying crafted input into the First Name, Middle text, or Last Name fields. Details Cross-site scripting or XSS ...
GHSA-PF86-4W35-CJ89 Liferay Portal vulnerable to cross-site scripting in the Calendar widget
Multiple cross-site scripting XSS vulnerabilities in the Calendar widget when inviting users to a event in Liferay Portal 7.4.3.35 through 7.4.3.110, and Liferay DXP 2023.Q4.0 through 2023.Q4.4, 2023.Q3.1 through 2023.Q3.6, 7.4 update 35 through update 92, and 7.3 update 25 through update 35 allo...
Liferay Portal vulnerable to cross-site scripting in the related asset selector
Multiple stored cross-site scripting XSS vulnerability in the related asset selector in Liferay Portal 7.4.3.50 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.4, 2023.Q3.1 through 2023.Q3.7, and 7.4 update 50 through update 92 allows remote authenticated attackers to inject arbitrar...
PT-2025-40049
Multiple cross-site scripting XSS vulnerabilities in the Calendar widget when inviting users to a event in Liferay Portal 7.4.3.35 through 7.4.3.110, and Liferay DXP 2023.Q4.0 through 2023.Q4.4, 2023.Q3.1 through 2023.Q3.6, 7.4 update 35 through update 92, and 7.3 update 25 through update 35 allo...
PT-2025-39993
Name of the Vulnerable Software and Affected Versions PHPGurukul User Registration & Login and User Management System version 3.3 Description A Reflected Cross-Site Scripting XSS issue exists in the loginsystem/edit-profile.php file. This allows remote attackers to execute arbitrary JavaScript co...