9 matches found
EUVD-2025-15364
Malicious code in bioql PyPI...
CVE-2024-10818
The JSFiddle Shortcode WordPress plugin before 1.1.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2024-10818
The JSFiddle Shortcode WordPress plugin before 1.1.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2024-10818
The JSFiddle Shortcode WordPress plugin before 1.1.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2024-10818 JSFiddle Shortcode < 1.1.3 - Contributor+ XSS via Shortcode
The JSFiddle Shortcode WordPress plugin before 1.1.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2024-10818 JSFiddle Shortcode < 1.1.3 - Contributor+ XSS via Shortcode
The JSFiddle Shortcode WordPress plugin before 1.1.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2024-10818
CVE-2024-10818 affects the WordPress JSFiddle Shortcode plugin prior to version 1.1.3. The vulnerability arises because the plugin does not validate and escape some shortcode attributes before echoing them in pages/posts, enabling Stored XSS when a user with Contributor role or higher renders a s...
PT-2025-21410 · WordPress · Jsfiddle Shortcode
Name of the Vulnerable Software and Affected Versions: JSFiddle Shortcode plugin for WordPress versions prior to 1.1.3 Description: The issue concerns the JSFiddle Shortcode plugin for WordPress, where it fails to validate and escape some of its shortcode attributes before outputting them back in...
WordPress plugin JSFiddle Shortcode 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...