10 matches found
CVE-2026-44738
Technical details are not publicly available in the provided documents. Monitor for updates from authoritative sources for affected software, version, and remediation.
CVE-2026-40903
CVE-2026-40903 – Goshs ArtiPACKED vulnerability : goshs is a SimpleHTTPServer written in Go. Before 2.0.0-beta.6, it is affected by an ArtiPACKED vulnerability that can lead to leakage of the GITHUB_TOKEN through workflow artifacts, even if the token is not present in the repository source code. ...
CVE-2026-35393
goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, the POST multipart upload directory not sanitized. This vulnerability is fixed in 2.0.0-beta.3...
EUVD-2024-1036
Malicious code in bioql PyPI...
WordPress Slickstream Plugin <= 1.4.4 is vulnerable to Cross Site Scripting (XSS)
Software Slickstream Type Plugin Vulnerable versions = 1.4.4 Fixed in 2.0.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10179 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 483fb63a8894 Credits Peter Thaleikis Required...
WordPress SellKit Plugin <= 1.9.8 is vulnerable to Cross Site Scripting (XSS)
Software SellKit Type Plugin Vulnerable versions = 1.9.8 Fixed in 2.0.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4608 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 02ac2d093fda Credits stealthcopter Required privilege...
WordPress Pretty Google Calendar Plugin <= 1.7.2 is vulnerable to Cross Site Scripting (XSS)
Software Pretty Google Calendar Type Plugin Vulnerable versions = 1.7.2 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-33640 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e6c5ddcc221c Credits LVT-tholv2k Required privilege...
WordPress Doofinder for WooCommerce Plugin <= 1.5.49 is vulnerable to Open Redirection
Software Doofinder for WooCommerce Type Plugin Vulnerable versions = 1.5.49 Fixed in 2.0.0 OWASP Top 10 A1: Injection Classification Open Redirection CVE CVE-2023-40602 Patch priority Low CVSS severity Low 4.7 Developer Doofinder PSID 9706ea3eb29b Credits minhtuanact Required privilege...
WordPress flowpaper Plugin <= 1.9.9 is vulnerable to Cross Site Scripting (XSS)
Software flowpaper Type Plugin Vulnerable versions = 1.9.9 Fixed in 2.0.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-40197 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 17268f077903 Credits Mika Required privilege...
CVE-2021-21501
Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0...