44 matches found
[SECURITY] Fedora 43 Update: python-mkdocs-include-markdown-plugin-7.2.0-1.fc43
This package provides an Mkdocs Markdown includer plugin...
EUVD-2005-0690
Malware in sbrugna...
EUVD-2005-1359
Malware in sbrugna...
EUVD-2005-0932
Malware in sbrugna...
EUVD-2024-52414
Malicious code in bioql PyPI...
PT-2025-39915
Name of the Vulnerable Software and Affected Versions mkdocs-include-markdown-plugin versions prior to 7.1.8 Description The mkdocs-include-markdown-plugin has an issue where input validation is insufficient, potentially leading to collisions with substitution placeholders. This could allow for...
CVE-2024-54290
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Justin Fletcher Role Includer role-includer allows Reflected XSS.This issue affects Role Includer: from n/a through = 1.6...
PT-2025-1757 · WordPress · Role Includer
Name of the Vulnerable Software and Affected Versions: Role Includer plugin for WordPress versions up to, and including, 1.6 Description: The issue is related to Reflected Cross-Site Scripting via the user id parameter due to insufficient input sanitization and output escaping. This allows...
CVE-2024-54290
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Justin Fletcher Role Includer role-includer allows Reflected XSS.This issue affects Role Includer: from n/a through = 1.6...
CVE-2024-54290 WordPress Role Includer plugin <= 1.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Justin Fletcher Role Includer role-includer allows Reflected XSS.This issue affects Role Includer: from n/a through = 1.6...
CVE-2024-54290 WordPress Role Includer plugin <= 1.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Justin Fletcher Role Includer allows Reflected XSS.This issue affects Role Includer: from n/a through 1.6...
CVE-2024-54290
The CVE CVE-2024-54290 concerns Justin Fletcher Role Includer with a Reflected XSS due to improper input neutralization during web page generation; affected versions are n/a through 1.6. A PT Security entry confirms the issue and provides mitigation guidance: update to a version that includes a f...
PT-2024-36172 · Unknown · Justin Fletcher Role Includer
Name of the Vulnerable Software and Affected Versions: Justin Fletcher Role Includer versions n/a through 1.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This means an attacker can...
WordPress plugin Role Includer 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Role Includer plugin <= 1.6 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin Role Includer versions = 1.6...
The Includer CGI <= 1.0 - Remote Command Execution (1)
No description provided by source. !/usr/bin/perl Target - The Includer CGI = 1.0 Based on - http://www.milw0rm.com/id.php?id=862 Info about bug - Stupid use Open function. If you want know more visit our home page at nst.void.ru use IO::Socket; if @ARGV 3 print \n Includer CGI = 1.0 Network...
The Includer 1.0/1.1 - Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12926/info The Includer is reported prone to a remote file include vulnerability. The problem presents itself specifically when an attacker passes the location of a remote script through an affected parameter. An attacker...
The Includer CGI <= 1.0 - Remote Command Execution
No description provided by source. Remote Command Execution on: Example I.: www.host-vulnerable.com/includer.cgi?|id| Example II.: www.host-vulnerable.com/includer.cgi?template=|id| milw0rm.com 2005-03-07...
Joomla! Component MooFAQ (com_moofaq) - Local File Inclusion
---------------------------------------------------------------------- Joomla Component MooFAQ Local File Inclusion Vulnerability ---------------------------------------------------------------------- + Author : Chip D3 Bi0s + Email : chipdebiosalt+64gmail.com + Vulnerability : LFI Example:...
The Includer remote command execution flaw
The remote web server contains a PHP script that is affected by a remote code execution vulnerability. The remote host is running The Includer, a PHP script for emulating server-side includes. The version of The Includer installed on the remote host allows an attacker to execute arbitrary shell...