EUVD-2008-6030

Malware in sbrugna...

EUVD-2025-2737

Malicious code in bioql PyPI...

CVE-2025-22337

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in infosoftplugin Order Audit Log for WooCommerce order-audit-log-for-woocommerce allows Reflected XSS.This issue affects Order Audit Log for WooCommerce: from n/a through = 2.0...

CVE-2025-22337 WordPress Order Audit Log for WooCommerce plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in infosoftplugin Order Audit Log for WooCommerce order-audit-log-for-woocommerce allows Reflected XSS.This issue affects Order Audit Log for WooCommerce: from n/a through = 2.0...

InfoSoft FusionCharts 3 SWF Flash File Remote Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27109/info InfoSoft FusionCharts is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute malicious script cod...

Cross site scripting

Cross-site scripting XSS vulnerability in ActionScript in arbitrary Shockwave Flash SWF files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter...

CVE-2008-6060

Cross-site scripting XSS vulnerability in ActionScript in arbitrary Shockwave Flash SWF files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter...

CVE-2008-6060

CVE-2008-6060 describes a Cross-site Scripting (XSS) vulnerability in ActionScript within arbitrary Shockwave Flash (SWF) files generated by InfoSoft FusionCharts. The root cause is an injection vector via a URL in the SRC attribute of an IMG element in the dataURL parameter, enabling remote atta...

CVE-2008-6060

Cross-site scripting XSS vulnerability in ActionScript in arbitrary Shockwave Flash SWF files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter...

XSS Vulnerabilities in Common Shockwave Flash Files

Hi. Recently, there has been news regarding Flash authoring tools and XSS, but the articles contained little technical information. So, I created a detailed report at: http://docs.google.com/Doc?docid=ajfxntc4dmsq14dt57ssdw An abbreviated version intended for full-disclosure, bugtraq, and...

InfoSoft FusionCharts 3 - &#039;.swf&#039; Flash File Remote Code Execution

source: https://www.securityfocus.com/bid/27109/info InfoSoft FusionCharts is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute malicious script code in the context of the webserver...

InfoSoft FusionCharts 3 - .swf Flash File Remote Code Execution

InfoSoft FusionCharts 3 - .swf Flash File Remote Code Execution source: https://www.securityfocus.com/bid/27109/info InfoSoft FusionCharts is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue t...