5 matches found
EUVD-2023-29413
Malicious code in bioql PyPI...
CVE-2023-25458
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin = 2.0.3 versions...
CVE-2023-25458
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin = 2.0.3 versions...
CVE-2023-25458 WordPress TypeSquare Webfonts for ConoHa Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin = 2.0.3 versions...
CVE-2023-25458
CVE-2023-25458 corresponds to the WordPress plugin TypeSquare Webfonts for ConoHa (≤ 2.0.3). The root cause is insufficient sanitization/escaping of input parameters, allowing an authenticated attacker with Admin+ privileges to perform a Stored Cross-Site Scripting (XSS). The attack is described ...