5 matches found
EUVD-2025-13722
Malicious code in bioql PyPI...
CVE-2025-47685
Cross-Site Request Forgery CSRF vulnerability in Moloni Contribuinte Checkout contribuinte-checkout allows Stored XSS.This issue affects Contribuinte Checkout: from n/a through = 2.0.03...
CVE-2025-47685
Cross-Site Request Forgery CSRF vulnerability in Moloni Contribuinte Checkout contribuinte-checkout allows Stored XSS.This issue affects Contribuinte Checkout: from n/a through = 2.0.03...
CVE-2025-47685
CVE-2025-47685 affects the WordPress plugin Contribuinte Checkout (versions up to and including 2.0.02). It combines CSRF to enable Stored XSS in the plugin. The CVSS v3.1 base score is 7.1 (HIGH) with network attack vector, requiring user interaction, and impacts to confidentiality, integrity, a...
PT-2025-20227 · Unknown · Moloni Contribuinte Checkout
Name of the Vulnerable Software and Affected Versions: Moloni Contribuinte Checkout versions n/a through 2.0.02 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...