11 matches found
EUVD-2025-3482
Malicious code in bioql PyPI...
EUVD-2024-29021
Malicious code in bioql PyPI...
CVE-2024-31110
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Katz Web Services, Inc. Contact Form 7 Newsletter allows Reflected XSS.This issue affects Contact Form 7 Newsletter: from n/a through 2.2...
CVE-2025-23861 WordPress Debt Calculator plugin <= 1.0.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Zack Katz Debt Calculator debt-calculator allows Cross Site Request Forgery.This issue affects Debt Calculator: from n/a through = 1.0.1...
CVE-2025-23861 WordPress Debt Calculator plugin <= 1.0.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Zack Katz Debt Calculator debt-calculator allows Cross Site Request Forgery.This issue affects Debt Calculator: from n/a through = 1.0.1...
CVE-2025-23861
CVE-2025-23861 is a CSRF vulnerability in Katz Web Services, Inc. Debt Calculator affecting Debt Calculator versions up to 1.0.1. Public details reference a CVSSv3.1 base score of 7.1 (High) with network attack vector, requiring user interaction. The Red Hat advisory confirms CSRF context. The in...
CVE-2024-31110
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Katz Web Services, Inc. Contact Form 7 Newsletter allows Reflected XSS.This issue affects Contact Form 7 Newsletter: from n/a through 2.2...
CVE-2024-31110 WordPress Contact Form 7 Newsletter plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Katz Web Services, Inc. Contact Form 7 Newsletter allows Reflected XSS.This issue affects Contact Form 7 Newsletter: from n/a through 2.2...
CVE-2024-31110
CVE-2024-31110 — Reflected XSS in Contact Form 7 Newsletter (WordPress plugin) via Katz Web Services, Katz Contact Form 7 Newsletter. The vulnerability is an improper input neutralization vulnerability that could affect from n/a through 2.2. CVSS v3.1 base score listed as 7.1 (HIGH). Connected Re...
CVE-2024-31110 WordPress Contact Form 7 Newsletter plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Katz Web Services, Inc. Contact Form 7 Newsletter allows Reflected XSS.This issue affects Contact Form 7 Newsletter: from n/a through 2.2...
PT-2024-23780 · Katz Web Services · Contact Form 7 Newsletter
Name of the Vulnerable Software and Affected Versions: Katz Web Services, Inc. Contact Form 7 Newsletter versions prior to 2.2 Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting. This allows for Reflected XSS...