EUVD-2022-4344

Malicious code in bioql PyPI...

EUVD-2022-50211

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-0941

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In bpfskbchangehead of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System...

AdvGrasp: Adversarial Attacks on Robotic Grasping from a Physical Perspective

Adversarial attacks on robotic grasping provide valuable insights into evaluating and improving the robustness of these systems. Unlike studies that focus solely on neural network predictions while overlooking the physical principles of grasping, this paper introduces AdvGrasp, a framework for...

CVE-2013-3300

The JsonParser class in json/JsonParser.scala in Lift before 2.5 interprets a certain end-index value as a length value, which allows remote authenticated users to obtain sensitive information from other users' sessions via invalid input data containing a less than character...

CVE-2022-47449

Unauth. Reflected Cross-Site Scripting XSS vulnerability in RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin = 3.1.5 versions...

Huawei HarmonyOS and EMUI account module power-up vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. Huawei HarmonyOS and the EMUI account module are...

Huawei HarmonyOS and EMUI PMS Module Privilege Management Vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. A privilege management vulnerability exists in Huawei...

lift-laggner.de Cross Site Scripting vulnerability OBB-3698450

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

[SECURITY] Fedora 37 Update: bind-dyndb-ldap-11.10-15.fc37

This package provides an LDAP back-end plug-in for BIND. It features support for dynamic updates and internal caching, to lift the load off of your LDAP server...

saintpeteliftchairshowroom.com Cross Site Scripting vulnerability OBB-3466725

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2022-47449

Unauth. Reflected Cross-Site Scripting XSS vulnerability in RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin = 3.1.5 versions...

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin = 3.1.5 versions...

CVE-2022-47449 WordPress Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD Plugin <= 3.1.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin = 3.1.5 versions...

CVE-2022-47449

CVE-2022-47449 documents a cross-site scripting flaw in the RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin, vulnerable versions

CVE-2022-47449 WordPress Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD Plugin <= 3.1.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin = 3.1.5 versions...

WordPress plugin Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

PT-2023-15325 · Rextheme · Rextheme Cart Lift – Abandoned Cart Recovery For Woocommerce/Edd

Name of the Vulnerable Software and Affected Versions: RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin versions = 3.1.5 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious...

WordPress Cart Lift Plugin <= 3.1.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Cart Lift Type Plugin Vulnerable versions = 3.1.3 Fixed in 3.1.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47150 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 468e4b8c6ecf Credits István Márton Required...

WordPress Cart Lift Plugin <= 3.1.5 is vulnerable to Cross Site Scripting (XSS)

Software Cart Lift Type Plugin Vulnerable versions = 3.1.5 Fixed in 3.1.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-47449 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0f2e7403ef94 Credits Team WeBoB Required...