28 matches found
EUVD-2019-1951
Malware in sbrugna...
EUVD-2020-14285
Malware in sbrugna...
EUVD-2025-27032
Malicious code in bioql PyPI...
CVE-2025-48102 WordPress GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership plugin <= 1.6.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gourl GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership gourl-bitcoin-payment-gateway-paid-downloads-membership allows Stored XSS.This issue affects GoUrl Bitcoin Payment Gateway & Paid...
CVE-2025-48102 WordPress GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership plugin <= 1.6.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gourl GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership gourl-bitcoin-payment-gateway-paid-downloads-membership allows Stored XSS.This issue affects GoUrl Bitcoin Payment Gateway & Paid...
CVE-2025-48102
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gourl GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership gourl-bitcoin-payment-gateway-paid-downloads-membership allows Stored XSS.This issue affects GoUrl Bitcoin Payment Gateway & Paid...
WordPress GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership plugin <= 1.6.6 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Nabil Irawan Patchstack Alliance in WordPress Plugin GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership versions = 1.6.6...
WordPress plugin GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership Cross-Site Scripting Vulnerabilities
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
PT-2025-36242
Name of the Vulnerable Software and Affected Versions: GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership versions n/a through 1.6.6 Description: The software contains a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for...
CVE-2025-6916
A vulnerability, which was classified as critical, was found in TOTOLINK T6 4.1.5cu.748B20211015. This affects the function FormLogin of the file /formLoginAuth.htm. The manipulation of the argument authCode/goURL leads to missing authentication. The attack needs to be initiated within the local...
CVE-2020-21517
Cross Site Scripting XSS vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php...
CVE-2019-1010209
GoUrl.io GoURL Wordpress Plugin 1.4.13 and earlier is affected by: CWE-434. The impact is: unauthenticated/unzuthorized Attacker can upload executable file in website. The component is: gourl.phpL5637. The fixed version is: 1.4.14...
YzmCMS Cross-Site Scripting Vulnerability
YzmCMS is an open source CMS Content Management System. A cross-site scripting vulnerability exists in YzmCMS. The vulnerability stems from improper handling of the gourl parameter in message.tpl, which can be exploited by attackers to cause cross-site scripting attacks...
Yzmcms 安全漏洞
YzmCMS is an open source CMS Content Management System. A cross-site scripting vulnerability exists in YzmCMS. The vulnerability stems from improper handling of the gourl parameter in message.tpl, which can be exploited by attackers to cause cross-site scripting attacks...
PT-2025-15314 · Yzmcms · Yzmcms
Name of the Vulnerable Software and Affected Versions: YzmCMS version 7.1 Description: A problematic vulnerability has been found, allowing for cross-site scripting through the manipulation of the gourl argument in an unknown function of the file message.tpl. This can be exploited remotely...
CVE-2020-21517
Cross Site Scripting XSS vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php...
Cross site scripting
Cross Site Scripting XSS vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php...
CVE-2020-21517
Cross Site Scripting XSS vulnerability in MetInfo 7.0.0 via the gourl parameter in login.php...
CVE-2020-21517
MetInfo 7.0.0 is affected by a Cross‑Site Scripting (XSS) vulnerability exploitable via the gourl parameter in login.php. The issue is identified as CVE-2020-21517. Provided sources consistently describe the vulnerable entry as MetInfo’s login flow accepting gourl input that can be manipulated to...
Metinfo 跨站脚本漏洞
MetInfo is a Content Management System CMS developed using PHP and Mysql. A cross-site scripting vulnerability exists in MetInfo. The vulnerability can be exploited to conduct cross-site scripting attacks via the gourl parameter in login.php...