EUVD-2022-46459

Malicious code in bioql PyPI...

EUVD-2024-30510

Malicious code in bioql PyPI...

CVE-2024-32723

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Code Tides Advanced Floating Content allows Stored XSS.This issue affects Advanced Floating Content: from n/a through 1.2.5...

CVE-2024-12031

The Advanced Floating Content plugin for WordPress is vulnerable to SQL Injection via the 'floatingcontentduplicatepost' function in all versions up to, and including, 3.8.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...

CVE-2022-43458

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Code Tides Advanced Floating Content plugin = 1.2.1 versions...

CVE-2024-12031

The Advanced Floating Content plugin for WordPress is vulnerable to SQL Injection via the 'floatingcontentduplicatepost' function in all versions up to, and including, 3.8.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...

CVE-2024-12031

CVE-2024-12031 refers to the Advanced Floating Content plugin for WordPress. The vulnerability is an SQL Injection caused by insufficient escaping of user input in the floating_content_duplicate_post path and by improper query construction (insufficient use of query preparation). The advisory not...

WordPress Advanced Floating Content plugin <= 3.8.2 - Authenticated (Subscriber+) SQL Injection vulnerability

Authenticated Subscriber+ SQL Injection vulnerability discovered by Thái An Thái An in WordPress Plugin Advanced Floating Content versions = 3.8.2...

WordPress plugin Advanced Floating Content SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A SQL injection vulnerability exis...

PT-2024-17411 · WordPress · Advanced Floating Content

Name of the Vulnerable Software and Affected Versions: Advanced Floating Content plugin for WordPress versions up to, and including, 3.8.2 Description: The issue arises from insufficient escaping on the user-supplied parameter and lack of sufficient preparation on the existing SQL query in the...

CVE-2024-32723 WordPress Advanced Floating Content plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Code Tides Advanced Floating Content allows Stored XSS.This issue affects Advanced Floating Content: from n/a through 1.2.5...

CVE-2024-32723 WordPress Advanced Floating Content plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Code Tides Advanced Floating Content allows Stored XSS.This issue affects Advanced Floating Content: from n/a through 1.2.5...

PT-2024-24811 · Unknown · Advanced Floating Content

Name of the Vulnerable Software and Affected Versions: Advanced Floating Content versions 1.2.5 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting XSS vulnerability. Specifically, it is a Stored XSS...

WordPress plugin Advanced Floating Content Lite 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

WordPress Advanced Floating Content plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Advanced Floating Content versions = 1.2.5...

WordPress Advanced Floating Content Plugin <= 1.2.5 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Floating Content Type Plugin Vulnerable versions = 1.2.5 Fixed in 1.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32723 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d833224f8b7e Credits Joshua Chan Required privile...

CVE-2022-43458

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Code Tides Advanced Floating Content plugin = 1.2.1 versions...

CVE-2022-43458

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Code Tides Advanced Floating Content plugin = 1.2.1 versions...

Cross site scripting

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Code Tides Advanced Floating Content plugin = 1.2.1 versions...

CVE-2022-43458 WordPress Advanced Floating Content Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Code Tides Advanced Floating Content plugin = 1.2.1 versions...