EUVD-2009-3435

Malware in sbrugna...

CVE-2022-4709

The Royal Elementor Addons plugin for WordPress is vulnerable to insufficient access control in the 'wprimportlibrarytemplate' AJAX action in versions up to, and including, 1.3.59. This allows any authenticated user, including those with subscriber-level permissions, to import and activate...

PT-2023-15163 · WordPress · Royal Elementor Addons

Name of the Vulnerable Software and Affected Versions: The Royal Elementor Addons plugin for WordPress versions up to, and including, 1.3.59 Description: The issue is related to insufficient access control in the 'wpr import library template' AJAX action. This allows any authenticated user,...

vBulletin 'cacheTemplates' Remote Arbitrary File Deletion Vulnerability

vBulletin is an open source commercial web forum program. A remote arbitrary file deletion vulnerability exists in vBulletin 'cacheTemplates', which stems from the program failing to securely use the 'cacheTemplates' function in vBLibraryTemplate's 'unserialize' function in vBLibraryTemplate. An...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in IBM Lotus Quickr 8.1.0 services for WebSphere Portal allow remote attackers to inject arbitrary web script or HTML via the filename of a .odt file in a Lotus Quickr place, related to the Library template...

CVE-2009-3453

Multiple cross-site scripting XSS vulnerabilities in IBM Lotus Quickr 8.1.0 services for WebSphere Portal allow remote attackers to inject arbitrary web script or HTML via the filename of a .odt file in a Lotus Quickr place, related to the Library template...

CVE-2009-3453

Multiple cross-site scripting XSS vulnerabilities in IBM Lotus Quickr 8.1.0 services for WebSphere Portal allow remote attackers to inject arbitrary web script or HTML via the filename of a .odt file in a Lotus Quickr place, related to the Library template...