23 matches found
EUVD-2023-27899
Malicious code in bioql PyPI...
EUVD-2022-50202
Malicious code in bioql PyPI...
EUVD-2023-38457
Malicious code in bioql PyPI...
CVE-2023-23988
Missing Authorization vulnerability in Joseph C Dolson My Tickets.This issue affects My Tickets: from n/a through 1.9.11...
CVE-2023-23988 WordPress My Tickets plugin <= 1.9.11 - Payment Bypass Vulnerability
Missing Authorization vulnerability in Joseph C Dolson My Tickets.This issue affects My Tickets: from n/a through 1.9.11...
CVE-2023-23988
CVE-2023-23988 affects the WordPress My Tickets plugin (versions <= 1.9.11). The issue is a Missing Authorization vulnerability, allowing unauthenticated users to bypass payment-related checks, potentially impacting the payment flow. The official Patchstack entry confirms the vulnerable softwa...
CVE-2024-25916
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joseph C Dolson My Calendar allows Stored XSS.This issue affects My Calendar: from n/a through 3.4.23...
CVE-2024-25916 WordPress My Calendar plugin <= 3.4.23 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joseph C Dolson My Calendar allows Stored XSS.This issue affects My Calendar: from n/a through 3.4.23...
CVE-2024-25916
CVE-2024-25916 affects the WordPress My Calendar plugin up to version 3.4.23. The root cause is improper neutralization of input during page generation, resulting in Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied attributes. The vulnerabili...
CVE-2024-25916 WordPress My Calendar plugin <= 3.4.23 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joseph C Dolson My Calendar allows Stored XSS.This issue affects My Calendar: from n/a through 3.4.23...
CVE-2023-34377
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Joseph C Dolson My Content Management plugin = 1.7.6 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Joseph C Dolson My Content Management plugin = 1.7.6 versions...
CVE-2023-34377
CVE-2023-34377 is a stored XSS vulnerability in the WordPress plugin My Content Management by Joseph C Dolson , affecting versions up to and including 1.7.6 . The issue requires admin+ authentication to exploit and is described as a stored XSS affecting user input handling. Public CVSS metrics va...
CVE-2023-34377 WordPress My Content Management Plugin <= 1.7.6 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Joseph C Dolson My Content Management plugin = 1.7.6 versions...
CVE-2023-23813
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Calendar plugin = 3.4.3 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Calendar plugin = 3.4.3 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Calendar plugin = 3.3.24.1 versions...
CVE-2022-47427
CVE-2022-47427: WordPress My Calendar plugin
CVE-2022-47427 WordPress My Calendar Plugin <= 3.3.24.1 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Calendar plugin = 3.3.24.1 versions...
CVE-2022-47427 WordPress My Calendar Plugin <= 3.3.24.1 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Calendar plugin = 3.3.24.1 versions...