37 matches found
EUVD-2008-3213
Malware in sbrugna...
EUVD-2009-3610
Malware in sbrugna...
EUVD-2025-4059
Malicious code in bioql PyPI...
EUVD-2024-0968
Malicious code in bioql PyPI...
CVE-2024-29644
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
CVE-2025-25149
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box login-box allows Stored XSS.This issue affects Login-box: from n/a through = 2.0.4...
CVE-2025-25149
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box login-box allows Stored XSS.This issue affects Login-box: from n/a through = 2.0.4...
CVE-2025-25149 WordPress Login-box plugin <= 2.0.4 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box allows Stored XSS. This issue affects Login-box: from n/a through 2.0.4...
CVE-2025-25149
CVE-2025-25149 corresponds to a CSRF to Stored XSS vulnerability in the WordPress Login-box plugin (versions
CVE-2025-25149 WordPress Login-box plugin <= 2.0.4 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Danillo Nunes Login-box login-box allows Stored XSS.This issue affects Login-box: from n/a through = 2.0.4...
WordPress plugin Login-box 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...
PT-2025-5958 · Unknown · Danillo Nunes Login-Box
Name of the Vulnerable Software and Affected Versions: Danillo Nunes Login-box versions 2.0.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...
WordPress Login-box plugin <= 2.0.4 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Login-box versions = 2.0.4...
dcat-admin Cross Site Scripting vulnerability
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
GHSA-MR24-CF69-5CHQ dcat-admin Cross Site Scripting vulnerability
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
CVE-2024-29644
CVE-2024-29644 concerns a Cross Site Scripting vulnerability in dcat-admin v2.1.3 and earlier. The issue allows a remote attacker to execute arbitrary code by injecting a crafted script into the user login box. Documents consistently describe this as a client-side script injection affecting the l...
CVE-2024-29644
Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...
Dcat Admin 安全漏洞
Dcat Admin is a backend system builder based on the secondary development of laravel-admin by Jiang Qinghua's personal developer. A security vulnerability exists in Dcat Admin v.2.1.3 and earlier versions. The vulnerability can be exploited by remote attackers to execute arbitrary code in the use...
CVE-2023-0544
The WP Login Box WordPress plugin through 2.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-0544 WP Login Box <= 2.0.2 - Admin+ Stored XSS
The WP Login Box WordPress plugin through 2.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...