EUVD-2023-48593

Malicious code in bioql PyPI...

EUVD-2025-3542

Malicious code in bioql PyPI...

CVE-2025-23927

CVE-2025-23927 involves the Incredible Font Awesome plugin by Massimo Serpilli, with a stored XSS caused by improper neutralization of input during web page generation. The vulnerability affects Incredible Font Awesome versions up to 1.0 (per initial description). Connected documents corroborate ...

CVE-2025-23927 WordPress Incredible Font Awesome plugin <= 1.0 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in massimo.serpilli Incredible Font Awesome incredible-font-awesome allows Stored XSS.This issue affects Incredible Font Awesome: from n/a through = 1.0...

rejetto HFS Security Vulnerability

rejetto HFS is a web-based file server from the individual developer Massimo Melina in Italy. A security vulnerability exists in rejetto HFS versions prior to 0.52.10, which originates from allowing an authenticated remote user to execute operating system commands...

CVE-2023-44234

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

CVE-2023-44234 WordPress WP GPX Maps plugin <= 1.7.08 - Broken Access Control vulnerability

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

CVE-2023-44234 WordPress WP GPX Maps plugin <= 1.7.08 - Broken Access Control vulnerability

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

massimo-catalano.de Cross Site Scripting vulnerability OBB-2705072

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

massimo-official-store.com Cross Site Scripting vulnerability OBB-1246770

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Liferay 6.1.0 CE - Privilege Escalation

Exploit Title: Liferay 6.1.0 CE GA1 Privilege Escalation Date: 18/05/2015 Exploit Author: Massimo De Luca - mentat.is Vendor Homepage: https://www.liferay.com Software Link: http://www.liferay.com/it/community/releases/-/assetpublisher/nSr2/content/id/18060360 Version: 6.1.0 CE Tested on: -...

Wordpress massimo theme Full Path Disclosure vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------------------------------------------------ Exploit Title: Wordpress massimo theme Full Path Disclosure vulnerability Date: 14/01/2012 Author: terrorist Tested on: Fedora17...

Unfixed XSS vulnerability at www.tuttitalia.it

Security researcher Massimo Lombardo, has submitted on 11/01/2011 a cross-site-scripting XSS vulnerability affecting www.tuttitalia.it, which at the time of submission ranked 43276 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It ...

Unfixed XSS vulnerability at www.nonsolocap.it

Security researcher Massimo Lombardo, has submitted on 11/01/2011 a cross-site-scripting XSS vulnerability affecting www.nonsolocap.it, which at the time of submission ranked 33008 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It ...

hfs-xss.txt

Syhunt: HFS HTTP File Server Template Cross-Site Scripting and Information Disclosure Vulnerabilities Advisory-ID: 200801161 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 2.0 to and including 2.3Beta Build 174 Non-Affected Applications: HFS 1.6a and earlier versions...

Syhunt: HFS &#40;HTTP File Server&#41; Template Cross-Site Scripting and Information Disclosure Vulnerabilities

Syhunt: HFS HTTP File Server Template Cross-Site Scripting and Information Disclosure Vulnerabilities Advisory-ID: 200801161 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 2.0 to and including 2.3Beta Build 174 Non-Affected Applications: HFS 1.6a and earlier versions...

Syhunt: HFS &#40;HTTP File Server&#41; Username Spoofing and Log Forging/Injection Vulnerability

Syhunt: HFS HTTP File Server Username Spoofing and Log Forging/Injection Vulnerability Advisory-ID: 200801163 Discovery Date: 1.16.2008 Release Date: 1.23.2008 Affected Applications: HFS 1.5g to and including 2.3Beta Build 174; and possibly HFS version 1.5f Non-Affected Applications: HFS 1.5e and...

[email protected], [email protected]

=========================================================== Ubuntu Security Notice USN-476-1 June 22, 2007 redhat-cluster-suite vulnerability https://launchpad.net/bugs/121780 =========================================================== A security issue affects the following Ubuntu releases: Ubunt...

Ariadne 2.4 - store_config[code] Remote File Inclusion

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Ariadne v2.4 storeconfigcode Remote File Include Vuln =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Found: Cyber-Security.Org...

mp3SDS 3.0 (Core/core.inc.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ================================================================ mp3SDS 3.0 Core/core.inc.php Remote File Include Vulnerability ================================================================ Script: MP3 Streaming DownSampler for PHP v3.0...