50 matches found
EUVD-2025-3251
Malicious code in bioql PyPI...
CVE-2025-23566
Cross-Site Request Forgery CSRF vulnerability in syedamirhussain91 Custom Post custom-post-type-gui allows Stored XSS.This issue affects Custom Post: from n/a through = 1.0...
CVE-2025-23566
Cross-Site Request Forgery CSRF vulnerability in syedamirhussain91 Custom Post custom-post-type-gui allows Stored XSS.This issue affects Custom Post: from n/a through = 1.0...
CVE-2025-23566
CVE-2025-23566 describes a Cross-Site Request Forgery (CSRF) that enables Stored XSS in the WordPress plugin named Custom Post. Affected component: Custom Post (WordPress plugin) with vulnerability chain CSRF -> Stored XSS. CVSS 3.1/3.1 metrics show Network attack vector, Low confidentiality/i...
CVE-2024-50534
Cross-Site Request Forgery CSRF vulnerability in techdabang World Prayer Time world-prayer-time allows Stored XSS.This issue affects World Prayer Time: from n/a through = 2.0...
CVE-2024-50534
CVE-2024-50534 – WordPress World Prayer Time plugin
CVE-2024-50534 WordPress World Prayer Time plugin <= 2.0 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in techdabang World Prayer Time world-prayer-time allows Stored XSS.This issue affects World Prayer Time: from n/a through = 2.0...
CVE-2024-50534 WordPress World Prayer Time plugin <= 2.0 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in techdabang World Prayer Time world-prayer-time allows Stored XSS.This issue affects World Prayer Time: from n/a through = 2.0...
CVE-2024-51714
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in techdabang User Password Reset user-password-reset allows Reflected XSS.This issue affects User Password Reset: from n/a through = 1.0...
CVE-2024-51714
CVE-2024-51714 describes a reflected Cross-Site Scripting vulnerability in the WordPress plugin/theme component “User Password Reset.” The issue arises from improper neutralization of user-supplied input during web page generation, allowing an attacker to craft a URL that, when visited by a victi...
CVE-2024-51714 WordPress User Password Reset plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in techdabang User Password Reset user-password-reset allows Reflected XSS.This issue affects User Password Reset: from n/a through = 1.0...
Instacart: Cross-Site Scripting Reflected On Main Domain
Hi Security Team instacart I'm Found Have Vulnerability Cross-Site Scripting Reflected on Main Domain in Variable utmsource POC --- https://www.instacart.com/green-zebra-grocery?utmsource="'alert/Hussain/&utmmedium="'alert/XSS/&utmcampaign="'alert/injection/ Img :- http://i.imgur.com/wSn4EU7.jpg...
British-born ISIS Hacker Killed in US Drone Strike in Syria
Remember Team Poison? The hackers group that was active in 2012, and was known for gaining access to the former Prime Minister Tony Blair's address book and then publishing information from it. The British hacker who actually obtained the Prime Minister's address book and was jailed for six month...
Wordpress Mathjax Latex Plugin 1.1 - CSRF Vulnerability
No description provided by source. Title: Wordpress Mathjax Latex 1.1 Cross-Site Request Forgery Vulnerability Release Date: 25/03/13 Author: Junaid Hussain illSecure Research Group Contact: [email protected] | Website: illSecure.com Software Link:...
U&M Software Event Lister 1.0 Auth Bypass Vulnerability
No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...
Myiosoft EasyBookMarker 4 - (Parent) SQL Injection Vulnerability
No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...
Pre ADS Portal <= 2.0 (Auth Bypass/XSS) Multiple Vulnerabilities
No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= IN THE NAME OF ALLAH -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Pre...
MozTrap Open Redirect
Title: moztrap.mozilla.org URL Redirection Vulnerability Discovery Date: 15/04/13 | Release Date: 13/06/13 Author: Junaid Hussain illSecure Research Group Contact: [email protected] | Website: illSecure.com Risk: Low...
Voila CMS Cross Site Scripting
Exploit Title:Voila Cms Xss Vulnerability. Exploit Author:Darksnipper & Dr.v!ru$ Home:www.cybercoders.org Email:[email protected] Cms Link:http://www.voilasyria.com Tested On : windows 7 & linux. Dork:intext:powerd by voila P.o.c open http://site.com/path/view/search/viewSearch.php put in sear...
WordPress Plugin Mathjax Latex 1.1 - Cross-Site Request Forgery
WordPress Plugin Mathjax Latex 1.1 - Cross-Site Request Forgery Title: Wordpress Mathjax Latex 1.1 Cross-Site Request Forgery Vulnerability Release Date: 25/03/13 Author: Junaid Hussain illSecure Research Group Contact: [email protected] | Website: illSecure.com Software Link:...