EUVD-2023-48593

Malicious code in bioql PyPI...

EUVD-2025-3542

Malicious code in bioql PyPI...

CVE-2025-23927 WordPress Incredible Font Awesome plugin <= 1.0 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in massimo.serpilli Incredible Font Awesome incredible-font-awesome allows Stored XSS.This issue affects Incredible Font Awesome: from n/a through = 1.0...

CVE-2025-23927

CVE-2025-23927 involves the Incredible Font Awesome plugin by Massimo Serpilli, with a stored XSS caused by improper neutralization of input during web page generation. The vulnerability affects Incredible Font Awesome versions up to 1.0 (per initial description). Connected documents corroborate ...

rejetto HFS Security Vulnerability

rejetto HFS is a web-based file server from the individual developer Massimo Melina in Italy. A security vulnerability exists in rejetto HFS versions prior to 0.52.10, which originates from allowing an authenticated remote user to execute operating system commands...

CVE-2023-44234

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

CVE-2023-44234 WordPress WP GPX Maps plugin <= 1.7.08 - Broken Access Control vulnerability

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

CVE-2023-44234 WordPress WP GPX Maps plugin <= 1.7.08 - Broken Access Control vulnerability

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

massimo-catalano.de Cross Site Scripting vulnerability OBB-2705072

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

massimo-official-store.com Cross Site Scripting vulnerability OBB-1246770

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Liferay 6.1.0 CE - Privilege Escalation

Exploit Title: Liferay 6.1.0 CE GA1 Privilege Escalation Date: 18/05/2015 Exploit Author: Massimo De Luca - mentat.is Vendor Homepage: https://www.liferay.com Software Link: http://www.liferay.com/it/community/releases/-/assetpublisher/nSr2/content/id/18060360 Version: 6.1.0 CE Tested on: -...

Wordpress massimo theme Full Path Disclosure vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------------------------------------------------ Exploit Title: Wordpress massimo theme Full Path Disclosure vulnerability Date: 14/01/2012 Author: terrorist Tested on: Fedora17...

Unfixed XSS vulnerability at www.nonsolocap.it

Security researcher Massimo Lombardo, has submitted on 11/01/2011 a cross-site-scripting XSS vulnerability affecting www.nonsolocap.it, which at the time of submission ranked 33008 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It ...

Unfixed XSS vulnerability at www.tuttitalia.it

Security researcher Massimo Lombardo, has submitted on 11/01/2011 a cross-site-scripting XSS vulnerability affecting www.tuttitalia.it, which at the time of submission ranked 43276 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It ...

hfs-xss.txt

Syhunt: HFS HTTP File Server Template Cross-Site Scripting and Information Disclosure Vulnerabilities Advisory-ID: 200801161 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 2.0 to and including 2.3Beta Build 174 Non-Affected Applications: HFS 1.6a and earlier versions...

Syhunt: HFS &#40;HTTP File Server&#41; Username Spoofing and Log Forging/Injection Vulnerability

Syhunt: HFS HTTP File Server Username Spoofing and Log Forging/Injection Vulnerability Advisory-ID: 200801163 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 1.5g to and including 2.3Beta Build 174; and possibly HFS version 1.5f Non-Affected Applications: HFS 1.5e and...

Syhunt: HFS &#40;HTTP File Server&#41; Template Cross-Site Scripting and Information Disclosure Vulnerabilities

Syhunt: HFS HTTP File Server Template Cross-Site Scripting and Information Disclosure Vulnerabilities Advisory-ID: 200801161 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 2.0 to and including 2.3Beta Build 174 Non-Affected Applications: HFS 1.6a and earlier versions...

[email protected], [email protected]

=========================================================== Ubuntu Security Notice USN-476-1 June 22, 2007 redhat-cluster-suite vulnerability https://launchpad.net/bugs/121780 =========================================================== A security issue affects the following Ubuntu releases: Ubunt...

Ariadne 2.4 - store_config[code] Remote File Inclusion

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Ariadne v2.4 storeconfigcode Remote File Include Vuln =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Found: Cyber-Security.Org...

mp3SDS 3.0 (Core/core.inc.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ================================================================ mp3SDS 3.0 Core/core.inc.php Remote File Include Vulnerability ================================================================ Script: MP3 Streaming DownSampler for PHP v3.0...