EUVD-2025-3336

Malicious code in bioql PyPI...

CVE-2025-23677

Cross-Site Request Forgery CSRF vulnerability in DSmidge HTTP to HTTPS link changer by Eyga.net https-links-in-content allows Stored XSS.This issue affects HTTP to HTTPS link changer by Eyga.net: from n/a through = 0.2.4...

CVE-2025-23677 WordPress HTTP to HTTPS link changer by Eyga.net plugin <= 0.2.4 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in DSmidge HTTP to HTTPS link changer by Eyga.net https-links-in-content allows Stored XSS.This issue affects HTTP to HTTPS link changer by Eyga.net: from n/a through = 0.2.4...

PayPal for Android SSL证书校验安全漏洞

CVE ID:CVE-2013-7201 PayPal for Android是一款用于安卓的paypal支付应用。 PayPal for Android WebHybridClient类不正确校验服务器SSL证书，允许攻击者利用漏洞伪造HTTPS链接，进行中间人等攻击。 0 PayPal for Android 5.3 目前没有详细解决方案提供： https://play.google.com/store/apps/details?id=com.paypal.android.p2pmobile&hl=en...

CommuniGate Pro Webmail 4.0.6 - Session Hijacking

!/usr/bin/perl Below is exploit code. Place it into cgi-bin, then recommended make symlink from DocumentRoot/AnyImage.gif to shj.pl, configure at least $url variable, and possible other vars and send victim HTML message with img src to your AnyImage.gif. When victim will read message, script will...