7 matches found
EUVD-2023-54761
Malicious code in bioql PyPI...
EUVD-2023-57518
Malicious code in bioql PyPI...
EUVD-2022-43179
Malicious code in bioql PyPI...
CVE-2025-42993 Missing Authorization Check in SAP S/4HANA (Enterprise Event Enablement)
Due to a missing authorization check vulnerability in SAP S/4HANA Enterprise Event Enablement, an attacker with access to the Inbound Binding Configuration could create an RFC destination and assign an arbitrary high-privilege user. This allows the attacker to consume events via the RFC...
PT-2025-8680 · WordPress · Simple Catalogue
Name of the Vulnerable Software and Affected Versions: Simple catalogue WordPress plugin versions 1.0.0 through 1.0.2 Description: The issue is related to a Reflected Cross-Site Scripting problem, where a parameter is not properly sanitised and escaped before being outputted back in the page. Thi...
CVE-2023-4250 EventPrime < 3.2.0 - Reflected XSS
The EventPrime WordPress plugin before 3.2.0 does not sanitise and escape some parameters before outputting them back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-0644 PushAssist <= 3.0.8 - Reflected Cross-Site Scripting
The Push Notifications for WordPress by PushAssist WordPress plugin through 3.0.8 does not sanitise and escape various parameters before outputting them back in pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...