CVE-2012-10014

A vulnerability classified as problematic has been found in Kau-Boy Backend Localization Plugin 2.0 on WordPress. Affected is the function backendlocalizationadminsettings/backendlocalizationsavesetting/backendlocalizationloginform/localizebackend of the file backendlocalization.php. The...

Cross site scripting

A vulnerability was found in Kau-Boy Backend Localization Plugin up to 1.6.1 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the file backendlocalization.php. The manipulation leads to cross site scripting. The attack may be initiated remotely...

CVE-2012-10014 Kau-Boy Backend Localization Plugin backend_localization.php localize_backend cross site scripting

A vulnerability classified as problematic has been found in Kau-Boy Backend Localization Plugin 2.0 on WordPress. Affected is the function backendlocalizationadminsettings/backendlocalizationsavesetting/backendlocalizationloginform/localizebackend of the file backendlocalization.php. The...

CVE-2012-10014 Kau-Boy Backend Localization Plugin backend_localization.php localize_backend cross site scripting

A vulnerability classified as problematic has been found in Kau-Boy Backend Localization Plugin 2.0 on WordPress. Affected is the function backendlocalizationadminsettings/backendlocalizationsavesetting/backendlocalizationloginform/localizebackend of the file backendlocalization.php. The...

CVE-2012-10014

CVE-2012-10014 affects Kau-Boy Backend Localization Plugin for WordPress (version 2.0). The vulnerability resides in backend_localization.php (functions backend_localization_admin_settings, backend_localization_save_setting, backend_localization_login_form, localize_backend) and enables cross-sit...

CVE-2012-10013

CVE-2012-10013 affects the WordPress plugin “Kau-Boy Backend Localization Plugin” up to version 1.6.1. The vulnerability lies in the file backend_localization.php where input/processing leads to cross-site scripting (XSS) . It can be exploited remotely over the network. Remediation provided in th...

WordPress plugin Backend Localization 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

WordPress plugin Backend Localization 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

PT-2023-9951 · WordPress · Kau-Boy Backend Localization Plugin

Name of the Vulnerable Software and Affected Versions: Kau-Boy Backend Localization Plugin version 2.0 Description: A problematic vulnerability has been found in the Kau-Boy Backend Localization Plugin on WordPress, affecting the function backend localization admin settings/backend localization...

PT-2023-9950 · Unknown · Kau-Boy Backend Localization Plugin

Name of the Vulnerable Software and Affected Versions: Kau-Boy Backend Localization Plugin versions up to 1.6.1 Description: The issue affects the processing of the file backend localization.php, leading to cross-site scripting. The attack can be initiated remotely. Recommendations: For versions ...

OPENSUSE-SU-2023:0090-1 Security update for nextcloud-desktop

This update for nextcloud-desktop fixes the following issues: nextcloud-desktop was updated to 3.8.0: - Resize WebView widget once the loginpage rendered - Feature/secure file drop - Check German translation for wrong wording - L10n: Correct word - Fix displaying of file details button for local...

Malicious code in @miro-site/localization (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50ed9a83072029828451c3aa68fec9a49ec55530b597b59576b0a8c497776385 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview taxi-localization is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

SUSE CVE-2022-28282

By using a link with rel="localization" a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash. This vulnerability affects Thunderbird 91.8, Firefox 99, and...

Malicious code in taxi-localization (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 097d1cf9ae16e020a782ddabda9f4556107a34ffa87be84afde01f013fe2e52a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-830 Malicious code in taxi-localization (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 097d1cf9ae16e020a782ddabda9f4556107a34ffa87be84afde01f013fe2e52a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

November 8, 2022—KB5019980 (OS Build 22621.819)

November 8, 2022—KB5019980 OS Build 22621.819 NEW 11/8/22 IMPORTANT Because of minimal operations during the holidays and the upcoming Western new year, there won’t be a non-security preview release for the month of December 2022. There will be a monthly security release known as a “B” release fo...

DEBIAN-CVE-2022-28282

By using a link with rel="localization" a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash. This vulnerability affects Thunderbird 91.8, Firefox 99, and...

Code injection

By using a link with rel="localization" a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash. This vulnerability affects Thunderbird 91.8, Firefox 99, and...

CVE-2022-28282

By using a link with rel="localization" a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash. This vulnerability affects Thunderbird 91.8, Firefox 99, and...