EUVD-2010-4862

Malware in sbrugna...

CVE-2024-9382

The Gantry 4 Framework plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'overrideid' parameter in all versions up to, and including, 4.1.21 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2010-4898

SQL injection vulnerability in the Gantry comgantry component 3.0.10 for Joomla! allows remote attackers to execute arbitrary SQL commands via the moduleid parameter to index.php...

berrydb (>=1.0.9 <=1.1.2), datapipe-label-studio-lite (>=0.2.0 <=0.3.3) +2 more potentially affected by CVE-2025-25295 via label-studio-sdk (>=0.0.1 <=0.0.34)

label-studio-sdk PYPI version =0.0.1, =1.0.9, =0.2.0, =0.5.11, =0.0.15, =1.0.0 Source cves: CVE-2025-25295 Source advisory: OSV:GHSA-RGV9-W7JP-M23G...

CVE-2024-9382

The Gantry 4 Framework plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'overrideid' parameter in all versions up to, and including, 4.1.21 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2024-9382

The Gantry 4 Framework plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'overrideid' parameter in all versions up to, and including, 4.1.21 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2024-9382 Gantry 4 Framework <= 4.1.21 - Reflected Cross-Site Scripting

The Gantry 4 Framework plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'overrideid' parameter in all versions up to, and including, 4.1.21 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2024-9382

CVE-2024-9382 describes a Reflected Cross-Site Scripting (XSS) in the Gantry 4 Framework plugin for WordPress. The vulnerability arises from insufficient input sanitization and output escaping in the override_id parameter, affecting all versions up to and including 4.1.21. It allows unauthenticat...

CVE-2024-9382 Gantry 4 Framework <= 4.1.21 - Reflected Cross-Site Scripting

The Gantry 4 Framework plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'overrideid' parameter in all versions up to, and including, 4.1.21 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

WordPress plugin Gantry 4 Framework 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress Gantry 4 Framework plugin <= 4.1.21 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Gantry 4 Framework versions = 4.1.21...

WordPress Gantry 4 Framework Plugin <= 4.1.21 is vulnerable to Cross Site Scripting (XSS)

Software Gantry 4 Framework Type Plugin Vulnerable versions = 4.1.21 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9382 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2e1bc106a0d6 Credits vgo0 Required...

Gantry package 5.4.26 ,Other

Gantry package containing "Twig" library creates folders with improper folder permissions. On some servers this may lead to world writeable folders. see https://github.com/gantry/gantry5/issues/2363 https://github.com/twigphp/Twig/issues/2353 developer states not a security issue within their...

Gantry Framework 3.0.10 (Joomla) Blind SQL Injection Exploit

No description provided by source. !/bin/bash Exploit Title: Gantry Framework 3.0.10 Joomla Blind SQL Injection Exploit Date: 4 September 2010 Author: jdc Software Link: http://www.gantry-framework.org Version: 3.0.10 Patched: 3.0.11 if $1 == then echo $0 usage: $0 url debug echo exit 1 fi clear...

CVE-2010-4898

SQL injection vulnerability in the Gantry comgantry component 3.0.10 for Joomla! allows remote attackers to execute arbitrary SQL commands via the moduleid parameter to index.php...

Sql injection

SQL injection vulnerability in the Gantry comgantry component 3.0.10 for Joomla! allows remote attackers to execute arbitrary SQL commands via the moduleid parameter to index.php...

CVE-2010-4898

SQL injection vulnerability in the Gantry comgantry component 3.0.10 for Joomla! allows remote attackers to execute arbitrary SQL commands via the moduleid parameter to index.php...

CVE-2010-4898

The CVE-2010-4898 entry concerns the Gantry (com_gantry) component for Joomla!, version 3.0.10. The underlying issue is an SQL injection vulnerability in index.php that can be triggered via the moduleid parameter, allowing remote attackers to execute arbitrary SQL commands. The vulnerability is d...

Joomla Gantry Framework 3.0.10 Blind SQL Injection

!/bin/bash Exploit Title: Gantry Framework 3.0.10 Joomla Blind SQL Injection Exploit Date: 4 September 2010 Author: jdc Software Link: http://www.gantry-framework.org Version: 3.0.10 Patched: 3.0.11 if "$1" == "" then echo "$0 usage: $0 url debug" echo "" exit 1 fi clear echo "" echo " Gantry...

Gantry Framework 3.0.10 (Joomla) Blind SQL Injection Exploit

Exploit for php platform in category web applications ============================================================ Gantry Framework 3.0.10 Joomla Blind SQL Injection Exploit ============================================================ !/bin/bash Exploit Title: Gantry Framework 3.0.10 Joomla Blind...