EUVD-2023-50441

Malicious code in bioql PyPI...

CVE-2024-30561

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6...

CVE-2024-30561

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6...

CVE-2024-30561

CVE-2024-30561 is a Reflected Cross‑Site Scripting vulnerability in the WordPress plugin Appointment Calendar by Scientech It Solution. It affects versions listed as “from n/a through 2.9.6,” arising from improper neutralization of input during web page generation. The CVSSv3.1 base score is 7.1 ...

CVE-2024-30561 WordPress Appointment Calendar plugin <= 2.9.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6...

CVE-2023-46198

Cross-Site Request Forgery CSRF vulnerability in Scientech It Solution Appointment Calendar plugin = 2.9.6 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Scientech It Solution Appointment Calendar plugin = 2.9.6 versions...

CVE-2023-46198 WordPress Appointment Calendar Plugin <= 2.9.6 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Scientech It Solution Appointment Calendar plugin = 2.9.6 versions...

CVE-2023-46198 WordPress Appointment Calendar Plugin <= 2.9.6 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Scientech It Solution Appointment Calendar plugin = 2.9.6 versions...

CVE-2023-46198

CVE-2023-46198 is a CSRF in the Scientech It Solution Appointment Calendar WordPress plugin affecting versions ≤ 2.9.6. It enables cross-site requests to be forged without authentication to perform unintended actions; sources disagree slightly on exact access requirements, but Patch/Wordfence not...

Expert Restaurant eCommerce 1.0 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Expert Restaurant eCommerce 1.0 SQL Injection

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Expert Job Portal Management System 1.0 SQL Injection

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Expert Job Portal Management System 1.0 SQL Injection Vulnerability

┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐ ┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ┌┘ Vulnerability ┌┘ └───────────────────────────────────────────────────────────────────────────────────────┘┘ : Author : CraCkEr : │...

How to Use a UTM Solution & Win Time, Money and Resources

Unified threat management is thought to be a universal solution for many reasons. First of all, it is compatible with almost any hardware. As a business or an MSP, you don't have to bother with leasing or subleasing expensive equipment. There is no need to chase your clients to return your costly...

Command Execution Vulnerability in H3C SecPath Operations Audit System

Xinhua San Technology Co., Ltd. is a new IT solution provider, committed to become the most trusted partner for customers' business innovation and digital transformation. The main products are routers, big data, switches, IoT, cloud computing, servers and so on. A command execution vulnerability...

Logic Flaw Vulnerability in Techland MADP2.0 Mobile Financial Development Platform

Beijing Techland Software System Co., Ltd. is a banking IT solution provider. A logic flaw vulnerability exists in the Techland MADP2.0 mobile financial development platform. An attacker can utilize the vulnerability to add arbitrary users...

IWEBSOUL CMS 1.0 SQL Injection

Title: ======= IWEBSOUL CMS - Multiple SQL Injection Vulnerabilities & Authentication Bypass Introduction: ============== Intrepid Websoul Private Limited - iWebsoul is a rapidly growing IT Solution provider in India. Team comprehensively works to create a unique business and industry based...

Joomla! Component Photo Contest 1.0.2 - SQL Injection

Exploit Title: Joomla! Component Photo Contest 1.0.2- SQL Injection Dork: N/A Date: 25.08.2017 Vendor Homepage: http://keenitsolution.com/ Software Link: https://codecanyon.net/item/photo-contest-joomla-extension/13268866 Demo: http://photo.keenitsolution.com/ Version: 1.0.2 Category: Webapps...

Security Advisory 3010060 released

Today, we released Security Advisory 3010060to provide additional protections regarding limited, targeted attacks directed at Microsoft Windows customers. A cyberattacker could cause remote code execution if someone is tricked into opening a maliciously-crafted PowerPoint document that contains a...