CVE-2024-34546

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Habibur Rahman Sticky Social Link sticky-social-link allows DOM-Based XSS.This issue affects Sticky Social Link: from n/a through = 2.0.1...

EUVD-2024-34849

Malicious code in bioql PyPI...

CVE-2024-34546

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Habibur Rahman Sticky Social Link sticky-social-link allows DOM-Based XSS.This issue affects Sticky Social Link: from n/a through = 2.0.1...

CVE-2024-34546

CVE-2024-34546 documents a DOM‑Based XSS in the Sticky Social Link plugin (Habibur Rahman). The issue is caused by improper neutralization of input during web page generation, enabling DOM-based XSS. Affected software: Sticky Social Link, versions from unknown start to

PT-2024-25960 · Unknown · Habibcoder Sticky Social Link

Name of the Vulnerable Software and Affected Versions: HabibCoder Sticky Social Link versions n/a through 1.0.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Stored XSS. This means that an...