EUVD-2024-28351

Malicious code in bioql PyPI...

CVE-2024-30430

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Email Newsletter Team - FluentCRM Fluent CRM allows Stored XSS.This issue affects Fluent CRM: from n/a through 2.8.44...

Fluent CRM < 2.8.45 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Email Newsletter, Marketing, Email Automation and CRM Plugin for WordPress by FluentCRM plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.8.44 due to insufficient input sanitization and output escaping. Thi...

CVE-2024-30430

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Email Newsletter Team - FluentCRM Fluent CRM allows Stored XSS.This issue affects Fluent CRM: from n/a through 2.8.44...

WordPress Fluent CRM Plugin <= 2.8.44 is vulnerable to Cross Site Scripting (XSS)

Software Fluent CRM Type Plugin Vulnerable versions = 2.8.44 Fixed in 2.8.45 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30430 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a52c9396d7a9 Credits Ananda Dhakal Patchstack Required privile...