EUVD-2025-8462

Malicious code in bioql PyPI...

CVE-2024-51598

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kendysond Selar.co Widget selar-co-widget allows DOM-Based XSS.This issue affects Selar.co Widget: from n/a through = 1.2...

CVE-2025-22652

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kendysond Payment Forms for Paystack payment-forms-for-paystack allows SQL Injection.This issue affects Payment Forms for Paystack: from n/a through = 4.0.1...

CVE-2025-22652

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kendysond Payment Forms for Paystack payment-forms-for-paystack allows SQL Injection.This issue affects Payment Forms for Paystack: from n/a through = 4.0.1...

CVE-2025-22652

CVE-2025-22652 is a SQL Injection vulnerability in the WordPress plugin Payment Forms for Paystack (vulnerable up to and including 4.0.1). The root cause, as detailed in the exploit repo, is unsafely inserting a URL parameter (order) directly into an SQL query without input validation/escaping in...

CVE-2024-51598

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kendysond Selar.co Widget selar-co-widget allows DOM-Based XSS.This issue affects Selar.co Widget: from n/a through = 1.2...

CVE-2024-51598

CVE-2024-51598 is a DOM-based XSS in WordPress plugin “Selar.co Widget” with input neutralization defects. Affected: Selar.co Widget versions n/a through 1.2. Public fix details are not provided in the connected documents; monitor for updates and vendor advisories for a patch or workaround.

CVE-2024-51598 WordPress Selar.co Widget plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kendysond Selar.co Widget selar-co-widget allows DOM-Based XSS.This issue affects Selar.co Widget: from n/a through = 1.2...

CVE-2024-51598 WordPress Selar.co Widget plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kendysond Selar.co Widget selar-co-widget allows DOM-Based XSS.This issue affects Selar.co Widget: from n/a through = 1.2...

PT-2024-34741 · Unknown · Kendysond Selar.Co Widget

Name of the Vulnerable Software and Affected Versions: Kendysond Selar.Co Widget versions n/a through 1.2 Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS vulnerability, allowing DOM-Based XSS. This means...