21 matches found
CVE-2023-40681
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11.10 versions...
EUVD-2023-38278
Malicious code in bioql PyPI...
CVE-2023-41657
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...
CVE-2023-34178
Cross-Site Request Forgery CSRF vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11 versions...
CVE-2024-37264
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Groundhogg Inc. Groundhogg allows Reflected XSS.This issue affects Groundhogg: from n/a through 3.4.2.3...
CVE-2024-37235 WordPress Groundhogg plugin <= 3.4.2.3 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Adrian Tobey Groundhogg groundhogg allows Cross Site Request Forgery.This issue affects Groundhogg: from n/a through = 3.4.2.3...
CVE-2024-37264
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Groundhogg Inc. Groundhogg allows Reflected XSS.This issue affects Groundhogg: from n/a through 3.4.2.3...
CVE-2024-37264
CVE-2024-37264: Groundhogg WordPress plugin versions up to 3.4.2.3 are affected by a reflected XSS in input handling during web page generation. Public references confirm Groundhogg is susceptible through version range n/a–3.4.2.3. Remediation per CVE context is to upgrade Groundhogg to a fixed r...
CVE-2024-37264 WordPress Groundhogg plugin <= 3.4.2.3 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Groundhogg Inc. Groundhogg allows Reflected XSS.This issue affects Groundhogg: from n/a through 3.4.2.3...
CVE-2023-34178
Cross-Site Request Forgery CSRF vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11 versions...
CVE-2023-34179
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Groundhogg Inc. Groundhogg allows SQL Injection.This issue affects Groundhogg: from n/a through 2.7.11...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Groundhogg Inc. Groundhogg allows SQL Injection.This issue affects Groundhogg: from n/a through 2.7.11...
CVE-2023-34179
CVE-2023-34179 : Groundhogg WordPress plugin (≤ 2.7.11) is vulnerable to SQL Injection due to improper neutralization of input. Impact per sources includes potential unauthorized data access with high impact; exploitation details are not provided in the documents. Patch recommended: upgrade to 2....
CVE-2023-40681
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11.10 versions...
CVE-2023-40681
CVE-2023-40681 is a stored XSS vulnerability in Groundhogg WordPress plugin (versions
CVE-2023-41657
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...
CVE-2023-41657 WordPress HollerBox Plugin <= 2.3.2 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...
CVE-2023-41657 WordPress HollerBox Plugin <= 2.3.2 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...