EUVD-2025-5761

Malicious code in bioql PyPI...

CVE-2025-23450

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in agenwebsite AW WooCommerce Kode Pembayaran aw-woocommerce-kode-pembayaran allows Reflected XSS.This issue affects AW WooCommerce Kode Pembayaran: from n/a through = 1.1.4...

CVE-2025-23450

CVE-2025-23450 affects the WordPress plugin AW WooCommerce Kode Pembayaran (agenwebsite), with all versions up to 1.1.4 vulnerable to Reflected Cross-Site Scripting due to improper neutralization of input during web page generation. CVSSv3.1 base score 7.1 (HIGH) - network attack vector, no privi...

WordPress plugin agenwebsite AW WooCommerce Kode Pembayaran 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress AW WooCommerce Kode Pembayaran plugin <= 1.1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Plugin AW WooCommerce Kode Pembayaran versions = 1.1.4...

CVE-2024-10840

A vulnerability classified as problematic has been found in romadebrian WEB-Sekolah 1.0. Affected is an unknown function of the file /Admin/akunedit.php of the component Backend. The manipulation of the argument kode leads to cross site scripting. It is possible to launch the attack remotely. The...

WEB-Sekolah 安全漏洞

WEB-Sekolah is a content management system by the individual developer Roma Debrian. A security vulnerability exists in WEB-Sekolah version 1.0, which stems from improper handling of the parameter kode and can lead to cross-site scripting attacks...

PT-2024-16582 · Unknown · Romadebrian Web-Sekolah

Name of the Vulnerable Software and Affected Versions: romadebrian WEB-Sekolah version 1.0 Description: A vulnerability has been found in the file /Admin/akun edit.php of the component Backend. The manipulation of the argument kode leads to cross site scripting. It is possible to launch the attac...

Exploit for CVE-2024-48217

CVE-2024-48217 Sismart Vulnerability ---------------------------...

Webspell Dailyinput Movie 4.2.x SQL Injection

======================================================================================== | Title : Webspell 4.2.x dailyinput Movie-Addon SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell 4.2.x dailyinput Movie-Addon | Site : www.kode-designs.com | Download :...

AuraCMS 2.2.2 - &#039;/pages_data.php&#039; Arbitrary Edit/Add/Delete

!/usr/bin/perl k1tk4t Public Security Advisory //////////////////////////////////////////////////////////// AuraCMS = 2.2.2 pagesdata.php Arbitrary Edit/Add/Delete data halaman exploit Vendor : http://www.auracms.org/ Kutu : ./js/pages/pagesdata.php Keterangan : pada berkas pagesdata.php dari awa...