246 matches found
PT-2025-48003
The Just Highlight plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Highlight Color' setting in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-lev...
EUVD-2006-4287
Malware in sbrugna...
EUVD-2012-3737
Malware in sbrugna...
EUVD-2006-3146
Malware in sbrugna...
EUVD-2022-47874
Malicious code in bioql PyPI...
EUVD-2025-1965
Malicious code in bioql PyPI...
EUVD-2025-30569
Malicious code in bioql PyPI...
EUVD-2024-36935
Malicious code in bioql PyPI...
EUVD-2024-53094
Malicious code in bioql PyPI...
CVE-2025-58260
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
CVE-2025-58260
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Highlight and Share versions = 5.1.1...
CVE-2025-58260 WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
CVE-2025-58260 WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
CVE-2025-58260
CVE-2025-58260 describes a Stored XSS vulnerability in the WordPress plugin Highlight and Share – Social Text and Image Sharing. The entry notes a Cross-Site Scripting issue via improper input neutralization in web page generation, affecting Highlight and Share from version n/a up to 5.1.1. The p...
PT-2025-38923
Name of the Vulnerable Software and Affected Versions Ronald Huereca Highlight and Share – Social Text and Image Sharing versions through 5.1.1 Description The software contains a flaw related to improper neutralization of input during web page generation, which allows for Stored Cross-site...
WordPress plugin Highlight and Share – Social Text and Image Sharing 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...
Linux Distros Unpatched Vulnerability : CVE-2012-3790
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in index.php in Adiscon LogAnalyzer before 3.4.4 and 3.5.x before 3.5.5 allows remote attackers to inject arbitrary web...
Malicious code in bespoke-highlight (npm)
The package bespoke-highlight was found to contain malicious code...
MAL-2025-15605 Malicious code in bespoke-highlight (npm)
The package bespoke-highlight was found to contain malicious code...