15 matches found
MAL-2025-191950 Malicious code in @hand-talk/yotta-icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c045f3fe855bc71b3f6e34b9341c65fc06e25d0ee9ec32d4036dfb3da596e96 The package @hand-talk/yotta-icons was found to contain malicious code...
EUVD-2025-200715
Malicious code in @hand-talk/yotta-icons npm...
Malicious code in @hand-talk/yotta-icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c045f3fe855bc71b3f6e34b9341c65fc06e25d0ee9ec32d4036dfb3da596e96 The package @hand-talk/yotta-icons was found to contain malicious code...
Malicious code in @hand-talk/yotta-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa12c4979b84a435f622bda703becfcf1b917f52e0c1dbb8a1bc5a875d8d8edb The package @hand-talk/yotta-core was found to contain malicious code...
MAL-2025-191496 Malicious code in @hand-talk/yotta-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa12c4979b84a435f622bda703becfcf1b917f52e0c1dbb8a1bc5a875d8d8edb The package @hand-talk/yotta-core was found to contain malicious code...
EUVD-2025-200014
Malicious code in @hand-talk/yotta-core npm...
EUVD-2025-28353
Malicious code in bioql PyPI...
CVE-2025-50015
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rodrigo Bastos Hand Talk handtalk allows Stored XSS.This issue affects Hand Talk: from n/a through = 6.1...
CVE-2025-50015
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rodrigo Bastos Hand Talk handtalk allows Stored XSS.This issue affects Hand Talk: from n/a through = 6.1...
CVE-2025-50015 WordPress Hand Talk plugin <= 6.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rodrigo Bastos Hand Talk handtalk allows Stored XSS.This issue affects Hand Talk: from n/a through = 6.1...
CVE-2025-50015
CVE-2025-50015 affects WordPress Hand Talk plugin up to version 6.0. Root cause: improper input neutralization during web page generation, enabling stored XSS. Impact: stored XSS in Hand Talk. Remediation: upgrade to Hand Talk 6.1 or later (patch/update to an unreleased version per connected deta...
CVE-2025-50015 WordPress Hand Talk plugin <= 6.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rodrigo Bastos Hand Talk handtalk allows Stored XSS.This issue affects Hand Talk: from n/a through = 6.1...
PT-2025-26372 · Hand Talk · Hand Talk
Name of the Vulnerable Software and Affected Versions: Hand Talk versions n/a through 6.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject malicious scripts...
WordPress plugin Hand Talk 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Hand Talk plugin <= 6.1 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Nguyen Ngoc Quang Bach maysbachs in WordPress Plugin Hand Talk versions = 6.1...