Lucene search
K

26 matches found

OSV
OSV
added 2026/04/16 10:7 a.m.6 views

MAL-2026-2786 Malicious code in node-metrica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 383d9c273b104a26749eb5f7f5ceb732c407b08002e5017418eb19563cb5b536 The package node-metrica was found to contain malicious code...

5.7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/16 10:7 a.m.8 views

Malicious code in node-metrica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 383d9c273b104a26749eb5f7f5ceb732c407b08002e5017418eb19563cb5b536 The package node-metrica was found to contain malicious code...

5.7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/16 9:49 a.m.9 views

Malicious code in chain-metrica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb624dbdf0ad26818c6d6685e22838c8bbb23d223376ba009f53500ca469ad86 The package chain-metrica was found to contain malicious code...

5.7AI score
Exploits0
OSV
OSV
added 2026/04/16 9:49 a.m.8 views

MAL-2026-2744 Malicious code in chain-metrica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb624dbdf0ad26818c6d6685e22838c8bbb23d223376ba009f53500ca469ad86 The package chain-metrica was found to contain malicious code...

5.7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/10 3:13 p.m.3 views

CVE-2025-63063

Missing Authorization vulnerability in Yandex Metrika Yandex.Metrica wp-yandex-metrika allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yandex.Metrica: from n/a through = 1.2.2...

5.3CVSS7AI score0.0035EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

WordPress plugin Yandex.Metrica 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.3CVSS6.4AI score0.0035EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-50063

Missing Authorization vulnerability in Yandex Metrika Yandex.Metrica wp-yandex-metrika allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yandex.Metrica: from n/a through = 1.2.2...

7AI score0.0035EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/12/07 2:8 p.m.4 views

WordPress Yandex.Metrica plugin <= 1.2.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by ohmymex in WordPress Plugin Yandex.Metrica versions = 1.2.2...

6.5CVSS6.7AI score0.0035EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5022

Malware in sbrugna...

3.5CVSS6.4AI score0.01047EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-38273

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.00439EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/14 5:25 p.m.4 views

Malicious code in yandex-metrica (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c347c0cd149f59328faebe4ea3eaf82b02f9eeb1971ee50b89880ccff4620e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References1
OSV
OSV
added 2025/07/14 5:25 p.m.5 views

MAL-2025-5846 Malicious code in yandex-metrica (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c347c0cd149f59328faebe4ea3eaf82b02f9eeb1971ee50b89880ccff4620e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2023/08/30 3:15 p.m.3 views

CVE-2023-34173

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alexander Semikashev Yandex Metrica Counter plugin = 1.4.3 versions...

4.8CVSS7.3AI score0.00439EPSS
Exploits1References1
NVD
NVD
added 2023/08/30 3:15 p.m.18 views

CVE-2023-34173

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alexander Semikashev Yandex Metrica Counter plugin = 1.4.3 versions...

5.9CVSS5.4AI score0.00439EPSS
Exploits1References1
Prion
Prion
added 2023/08/30 3:15 p.m.28 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alexander Semikashev Yandex Metrica Counter plugin = 1.4.3 versions...

4.3CVSS4.8AI score0.00439EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/08/30 2:4 p.m.23 views

CVE-2023-34173 WordPress Yandex Metrica Counter Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alexander Semikashev Yandex Metrica Counter plugin = 1.4.3 versions...

5.9CVSS5.5AI score0.00439EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/08/30 2:4 p.m.14 views

CVE-2023-34173 WordPress Yandex Metrica Counter Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alexander Semikashev Yandex Metrica Counter plugin = 1.4.3 versions...

5.9CVSS5.6AI score0.00439EPSS
Exploits1References1
CVE
CVE
added 2023/08/30 2:4 p.m.48 views

CVE-2023-34173

CVE-2023-34173 affects the WordPress Yandex Metrica Counter plugin 1.4.3 or mitigate access to the plugin’s admin interface. Several entries note the vulnerability status as unpatched/unconfirmed patches while recommending upgrading to a newer version where available. The CVE is publicly documen...

5.9CVSS5AI score0.00439EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/08/30 12:0 a.m.4 views

WordPress plugin counter-yandex-metrica 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.9CVSS6.3AI score0.00439EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/08/30 12:0 a.m.6 views

PT-2023-24711 · Yandex · Alexander Semikashev Yandex Metrica Counter

Name of the Vulnerable Software and Affected Versions: Alexander Semikashev Yandex Metrica Counter plugin versions = 1.4.3 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects the Alexander Semikashev Yandex Metrica Counter plugin. This vulnerability...

5.9CVSS5.4AI score0.00439EPSS
Exploits1References4
Rows per page
Query Builder