26 matches found
CVE-2026-22582
Improper Neutralization of Argument Delimiters in a Command 'Argument Injection' vulnerability in Salesforce Marketing Cloud Engagement MicrositeUrl module allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January 21st, 2026...
CVE-2025-11682
The CVE-2025-11682 issue affects Perx Customer Engagement & Loyalty Platform, specifically the LMT Dashboard, with versions prior to 4.617.4. Root cause: improper sanitization of uploaded SVGs, allowing an authenticated attacker to upload a malicious SVG to a campaign. When other users view the i...
EUVD-2015-1131
Malware in sbrugna...
EUVD-2025-22766
Malicious code in bioql PyPI...
EUVD-2025-22264
Malicious code in bioql PyPI...
CVE-2025-54129
HAXiam is a packaging wrapper for HAXcms which allows anyone to spawn their own microsite management platform. In versions 11.0.4 and below, the application returns a 200 response when requesting the data of a valid user and a 404 response when requesting the data of an invalid user. This can be...
CVE-2025-54129 HAXiam allows for User Enumeration
HAXiam is a packaging wrapper for HAXcms which allows anyone to spawn their own microsite management platform. In versions 11.0.4 and below, the application returns a 200 response when requesting the data of a valid user and a 404 response when requesting the data of an invalid user. This can be...
CVE-2025-54129
CVE-2025-54129 affects HAXiam, a packaging wrapper for HAXcms. In versions 11.0.4 and earlier, the application reveals user-existence by returning 200 for valid user data requests and 404 for invalid ones, enabling an automated brute-force enumeration of usernames. This behavior can be combined w...
Malicious code in client-microsite-reactjs-controls (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3e7614cd043fdaba853ac20fee4ef3aaa1ff2d0cc51534ca1ab3bc89a636d654 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2015-10121
A vulnerability has been found in Beeliked Microsite Plugin up to 1.0.1 on WordPress and classified as problematic. Affected by this vulnerability is the function embedhandler of the file beelikedmicrosite.php. The manipulation leads to cross site scripting. The attack can be launched remotely...
Malicious code in nextiva-partners-microsite (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-9726 Malicious code in nextiva-partners-microsite (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2015-10121
A vulnerability has been found in Beeliked Microsite Plugin up to 1.0.1 on WordPress and classified as problematic. Affected by this vulnerability is the function embedhandler of the file beelikedmicrosite.php. The manipulation leads to cross site scripting. The attack can be launched remotely...
Cross site scripting
A vulnerability has been found in Beeliked Microsite Plugin up to 1.0.1 on WordPress and classified as problematic. Affected by this vulnerability is the function embedhandler of the file beelikedmicrosite.php. The manipulation leads to cross site scripting. The attack can be launched remotely...
CVE-2015-10121 Beeliked Microsite Plugin beelikedmicrosite.php embed_handler cross site scripting
A vulnerability has been found in Beeliked Microsite Plugin up to 1.0.1 on WordPress and classified as problematic. Affected by this vulnerability is the function embedhandler of the file beelikedmicrosite.php. The manipulation leads to cross site scripting. The attack can be launched remotely...
CVE-2015-10121
CVE-2015-10121 affects Beeliked Microsite Plugin for WordPress up to version 1.0.1, with the vulnerability in the embed_handler of beelikedmicrosite.php leading to cross-site scripting. The attack is described as remote. Upgrading to version 1.0.2 patches the issue (patch id d23bafb5d05fb2636a2b7...
CVE-2015-10121 Beeliked Microsite Plugin beelikedmicrosite.php embed_handler cross site scripting
A vulnerability has been found in Beeliked Microsite Plugin up to 1.0.1 on WordPress and classified as problematic. Affected by this vulnerability is the function embedhandler of the file beelikedmicrosite.php. The manipulation leads to cross site scripting. The attack can be launched remotely...
WordPress plugin Beeliked Microsite 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...
PT-2023-10299 · WordPress · Beeliked Microsite Plugin
Name of the Vulnerable Software and Affected Versions: Beeliked Microsite Plugin versions up to 1.0.1 Description: A vulnerability has been found in the Beeliked Microsite Plugin, which is classified as problematic. The issue affects the embed handler function of the file beelikedmicrosite.php,...
Malicious code in style-guide-microsite (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e1e85921014d38943fdb2a3836e1e57072159de15ce4b595e1e421448b275194 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...