37 matches found
EUVD-2009-3610
Malware in sbrugna...
EUVD-2008-3213
Malware in sbrugna...
EUVD-2025-4059
Malicious code in bioql PyPI...
EUVD-2024-0968
Malicious code in bioql PyPI...
CVE-2024-29644
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
CVE-2025-25149
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box login-box allows Stored XSS.This issue affects Login-box: from n/a through = 2.0.4...
CVE-2025-25149
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box login-box allows Stored XSS.This issue affects Login-box: from n/a through = 2.0.4...
CVE-2025-25149 WordPress Login-box plugin <= 2.0.4 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box allows Stored XSS. This issue affects Login-box: from n/a through 2.0.4...
CVE-2025-25149 WordPress Login-box plugin <= 2.0.4 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box login-box allows Stored XSS.This issue affects Login-box: from n/a through = 2.0.4...
CVE-2025-25149
CVE-2025-25149 corresponds to a CSRF to Stored XSS vulnerability in the WordPress Login-box plugin (versions
PT-2025-5958 · Unknown · Danillo Nunes Login-Box
Name of the Vulnerable Software and Affected Versions: Danillo Nunes Login-box versions 2.0.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...
WordPress plugin Login-box 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...
WordPress Login-box plugin <= 2.0.4 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Login-box versions = 2.0.4...
GHSA-MR24-CF69-5CHQ dcat-admin Cross Site Scripting vulnerability
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
dcat-admin Cross Site Scripting vulnerability
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
CVE-2024-29644
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
Dcat Admin 安全漏洞
Dcat Admin is a backend system builder based on the secondary development of laravel-admin by Jiang Qinghua's personal developer. A security vulnerability exists in Dcat Admin v.2.1.3 and earlier versions. The vulnerability can be exploited by remote attackers to execute arbitrary code in the use...
CVE-2024-29644
CVE-2024-29644 concerns a Cross Site Scripting vulnerability in dcat-admin v2.1.3 and earlier. The issue allows a remote attacker to execute arbitrary code by injecting a crafted script into the user login box. Documents consistently describe this as a client-side script injection affecting the l...
CVE-2023-0544
The WP Login Box WordPress plugin through 2.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-0544 WP Login Box <= 2.0.2 - Admin+ Stored XSS
The WP Login Box WordPress plugin through 2.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...