Lucene search
K

169 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7921

Malicious code in bioql PyPI...

6.5CVSS9AI score0.00253EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-0136

Malicious code in bioql PyPI...

4.2CVSS6.4AI score0.00176EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-react-ig (npm)

The package @zalastax/nolb-react-ig was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-11974 Malicious code in @zalastax/nolb-ig (npm)

The package @zalastax/nolb-ig was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-13690 Malicious code in @zalastax/nolb-react-ig (npm)

The package @zalastax/nolb-react-ig was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in @zalastax/nolb-ig (npm)

The package @zalastax/nolb-ig was found to contain malicious code...

7AI score
Exploits0
CBLMariner
CBLMariner
added 2025/05/28 9:14 p.m.5 views

CVE-2025-22872 affecting package ig for versions less than 0.37.0-4

CVE-2025-22872 affecting package ig for versions less than 0.37.0-4. A patched version of the package is available...

6.5CVSS6.8AI score0.00478EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 12:0 p.m.12 views

CVE-2025-24363

The HL7 FHIR IG publisher is a tool to take a set of inputs and create a standard FHIR IG. Prior to version 1.8.9, in CI contexts, the IG Publisher CLI uses git commands to determine the URL of the originating repo. If the repo was cloned, or otherwise set to use a repo that uses a username and...

4.2CVSS7.2AI score0.00176EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.6 views

PT-2025-21484 · Git +1 · Jetpack +1

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue allows administrators to make GET requests to arbitrary URLs through the 'wp ajax boost proxy ig' action. Recommendations: At the moment, there is no information about a newer...

9.1CVSS6.2AI score0.00468EPSS
Exploits1References5
OSV
OSV
added 2025/04/16 6:16 p.m.7 views

AZL-60492 CVE-2025-22872 affecting package ig for versions less than 0.37.0-4

The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character / as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content...

6.5CVSS6.6AI score0.00478EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/04/09 12:0 a.m.13 views

Azure Linux 3.0 Security Update: coredns / ig / keda (CVE-2025-29786)

The version of coredns / ig / keda installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-29786 advisory. - Expr is an expression language and expression evaluation for Go. Prior to version 1.17.0, if th...

7.5CVSS7.3AI score0.00577EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/09 12:0 a.m.14 views

CBL Mariner 2.0 Security Update: coredns / ig / keda (CVE-2025-29786)

The version of coredns / ig / keda installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-29786 advisory. - Expr is an expression language and expression evaluation for Go. Prior to version 1.17.0, if th...

7.5CVSS7.3AI score0.00577EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/03/28 3:8 p.m.21 views

CVE-2025-29786 affecting package ig for versions less than 0.37.0-3

CVE-2025-29786 affecting package ig for versions less than 0.37.0-3. A patched version of the package is available...

7.5CVSS7.3AI score0.00577EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/03/27 9:13 p.m.7 views

CVE-2025-27144 affecting package ig for versions less than 0.37.0-2

CVE-2025-27144 affecting package ig for versions less than 0.37.0-2. A patched version of the package is available...

8.7CVSS7.3AI score0.00369EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/26 2:42 p.m.8 views

CVE-2025-30597

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iografica IG Shortcodes ig-shortcodes allows DOM-Based XSS.This issue affects IG Shortcodes: from n/a through = 3.1...

6.5CVSS7.2AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2025/03/24 2:15 p.m.14 views

CVE-2025-30597

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iografica IG Shortcodes ig-shortcodes allows DOM-Based XSS.This issue affects IG Shortcodes: from n/a through = 3.1...

6.5CVSS0.00253EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/24 1:47 p.m.6 views

CVE-2025-30597 WordPress IG Shortcodes plugin <= 3.1 Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iografica IG Shortcodes ig-shortcodes allows DOM-Based XSS.This issue affects IG Shortcodes: from n/a through = 3.1...

6.5CVSS7.3AI score0.00253EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/24 1:47 p.m.23 views

CVE-2025-30597 WordPress IG Shortcodes plugin <= 3.1 Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iografica IG Shortcodes ig-shortcodes allows DOM-Based XSS.This issue affects IG Shortcodes: from n/a through = 3.1...

6.5CVSS0.00253EPSS
Exploits0References1
CVE
CVE
added 2025/03/24 1:47 p.m.68 views

CVE-2025-30597

CVE-2025-30597 corresponds to a DOM-based XSS in IG Shortcodes (WordPress plugin) affecting IG Shortcodes &lt;= 3.1. The issue arises from improper neutralization of input during web page generation, enabling XSS after loading the shortcode. Affected product: IG Shortcodes. Root cause: insufficie...

6.5CVSS7.2AI score0.00253EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/24 1:5 p.m.6 views

WordPress IG Shortcodes plugin <= 3.1 Cross Site Scripting (XSS) Vulnerability

WordPress IG Shortcodes plugin = 3.1 Cross Site Scripting XSS Vulnerability discovered by timomangcut in WordPress Plugin IG Shortcodes versions = 3.1...

6.5CVSS6.1AI score0.00253EPSS
Exploits0Affected Software1
Rows per page
Query Builder