15 matches found
CVE-2026-2430
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lazy-loading image processing in all versions up to, and including, 3.1.14. This is due to the use of an overly permissive regular expression in the addlazyload function that replaces all occurrences of \ssr...
CVE-2026-2430
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lazy-loading image processing in all versions up to, and including, 3.1.14. This is due to the use of an overly permissive regular expression in the addlazyload function that replaces all occurrences of \ssr...
CVE-2026-2430 Autoptimize <= 3.1.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via Lazy-loaded Image Attributes
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lazy-loading image processing in all versions up to, and including, 3.1.14. This is due to the use of an overly permissive regular expression in the addlazyload function that replaces all occurrences of \ssr...
Exploit for CVE-2025-55182
CVE-2025-55182 Raw HTTP Requests to exploit the insecure lazy...
EUVD-2014-9818
Malware in sbrugna...
CVE-2014-125127
The mikecao/flight PHP framework in versions prior to v1.2 is vulnerable to Denial of Service DoS attacks due to eager loading of request bodies in the Request class constructor. The framework automatically reads the entire request body on every HTTP request, regardless of whether the application...
CVE-2014-125127
The mikecao/flight PHP framework in versions prior to v1.2 is vulnerable to Denial of Service DoS attacks due to eager loading of request bodies in the Request class constructor. The framework automatically reads the entire request body on every HTTP request, regardless of whether the application...
CVE-2014-125127 Denial of Service (DoS) vulnerability in mikecao/flight
The mikecao/flight PHP framework in versions prior to v1.2 is vulnerable to Denial of Service DoS attacks due to eager loading of request bodies in the Request class constructor. The framework automatically reads the entire request body on every HTTP request, regardless of whether the application...
PT-2025-35706
Name of the Vulnerable Software and Affected Versions: mikecao/flight versions prior to v1.2 Description: The mikecao/flight PHP framework is susceptible to Denial of Service DoS attacks. This is due to the eager loading of request bodies within the Request class constructor. The framework...
MAL-2025-1141 Malicious code in lazy-loading-router-provider (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0e86c543eb73f7bba257e00eb5c1e644a38195948dacb89094dc45204e6d8d8b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in lazy-loading-router-provider (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0e86c543eb73f7bba257e00eb5c1e644a38195948dacb89094dc45204e6d8d8b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-9464 Malicious code in @frontend-performance/image-lazy-loading (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @frontend-performance/image-lazy-loading (npm)
--- -= Per source details. Do not edit below this line.=-...
Description of the security update for SharePoint Server 2019: September 13, 2022 (KB5002258)
Description of the security update for SharePoint Server 2019: September 13, 2022 KB5002258 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability and Microsoft SharePoint remote code execution vulnerability. To learn more about the vulnerabilities...
Different versions of your site can be running at the same time
It's pretty easy for a user to be running an old version of your site. Not only that, but a user could be running many different versions of your site at the same time, in different tabs, and that's kinda terrifying. For instance: 1. A user opens your site. 2. You deploy an update. 3. The user...