32 matches found
PT-2026-5742
Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.1.29 Description OpenClaw is a personal AI assistant with an OS command injection issue. The sshNodeCommand function improperly escapes user-supplied project paths, leading to potential arbitrary command executi...
EUVD-2003-0023
Malware in sbrugna...
EUVD-2003-0024
Malware in sbrugna...
EUVD-2023-40630
Malicious code in bioql PyPI...
EUVD-2022-24495
Malicious code in bioql PyPI...
Malicious code in cf-menubar-pkg (npm)
The package cf-menubar-pkg was found to contain malicious code...
MAL-2025-16734 Malicious code in cf-menubar-pkg (npm)
The package cf-menubar-pkg was found to contain malicious code...
CVE-2023-36687
Cross-Site Request Forgery CSRF vulnerability in Andrea Tarantini Menubar plugin = 5.8.2 versions...
CVE-2023-36687
Cross-Site Request Forgery CSRF vulnerability in Andrea Tarantini Menubar plugin = 5.8.2 versions...
CVE-2023-36687
Cross-Site Request Forgery CSRF vulnerability in Andrea Tarantini Menubar plugin = 5.8.2 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Andrea Tarantini Menubar plugin = 5.8.2 versions...
CVE-2023-36687
CVE-2023-36687 is a CSRF vulnerability in the WordPress Menubar plugin (Andrea Tarantini) up to version 5.8.2. The issue references a CSRF flaw in wpm-admin.php and has a recorded CVSS ~5.4; remediation is to upgrade to 5.9 or later. No exploit details are provided in the supplied documents. Cont...
CVE-2023-36687 WordPress Menubar Plugin <= 5.8.2 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Andrea Tarantini Menubar plugin = 5.8.2 versions...
CVE-2023-36687 WordPress Menubar Plugin <= 5.8.2 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Andrea Tarantini Menubar plugin = 5.8.2 versions...
WordPress Plugin Menubar 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
WordPress Menubar Plugin <= 5.8.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Menubar Type Plugin Vulnerable versions = 5.8.2 Fixed in 5.9 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-36687 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID d827ae024a19 Credits LEE SE HYOUNG hackintoanetwor...
CVE-2022-1152
The Menubar WordPress plugin before 5.8 does not sanitise and escape the command parameter before outputting it back in the response via the menubar AJAX action available to any authenticated users, leading to a Reflected Cross-Site Scripting...
CVE-2022-1152
The Menubar WordPress plugin before 5.8 does not sanitise and escape the command parameter before outputting it back in the response via the menubar AJAX action available to any authenticated users, leading to a Reflected Cross-Site Scripting...
Cross site scripting
The Menubar WordPress plugin before 5.8 does not sanitise and escape the command parameter before outputting it back in the response via the menubar AJAX action available to any authenticated users, leading to a Reflected Cross-Site Scripting...
CVE-2022-1152
CVE-2022-1152 affects the WordPress Menubar plugin prior to 5.8. The root cause is failure to sanitize/escape the command parameter in the AJAX response, allowing Reflected Cross‑Site Scripting when authenticated users trigger the menubar action. Multiple connected sources corroborate: the vulner...