NYPD Sued Over Possible Records Collected Through Muslim Spying Program

The New York Police Department's “mosque-raking” program targeted Muslim communities across NYC. Now, as the city's first Muslim mayor takes office, one man is fighting—again—to fully expose it...

EUVD-2017-9123

Malware in sbrugna...

EUVD-2017-9128

Malware in sbrugna...

EUVD-2017-8797

Malware in sbrugna...

EUVD-2017-9130

Malware in sbrugna...

EUVD-2017-9127

Malware in sbrugna...

CVE-2024-12515 Muslim Prayer Time-Salah/Iqamah <= 1.8.11 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Muslim Prayer Time-Salah/Iqamah plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Masjid ID parameter in all versions up to, and including, 1.8.11 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

WordPress Muslim Prayer Time-Salah/Iqamah plugin <= 1.8.8 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by SOPROBRO in WordPress Plugin Muslim Prayer Time-Salah/Iqamah versions = 1.8.8...

PT-2025-1878 · WordPress · Muslim Prayer Time-Salah/Iqamah

Name of the Vulnerable Software and Affected Versions: The Muslim Prayer Time-Salah/Iqamah plugin for WordPress versions up to, and including, 1.8.8 Description: The issue is related to Stored Cross-Site Scripting via the Masjid ID parameter due to insufficient input sanitization and output...

WordPress plugin Muslim Prayer Time-Salah/Iqamah 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site scripting...

WordPress Muslim Prayer Time BD plugin <= 2.4 - Settings Reset via CSRF vulnerability

Settings Reset via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin Muslim Prayer Time BD versions = 2.4...

CVE-2024-4758

The Muslim Prayer Time BD WordPress plugin through 2.4 does not have CSRF check in place when reseting its settings, which could allow attackers to make a logged in admin reset them via a CSRF attack...

CVE-2024-4758 Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF

The Muslim Prayer Time BD WordPress plugin through 2.4 does not have CSRF check in place when reseting its settings, which could allow attackers to make a logged in admin reset them via a CSRF attack...

PT-2024-32662 · WordPress · Muslim Prayer Time Bd

Name of the Vulnerable Software and Affected Versions: Muslim Prayer Time BD WordPress plugin versions prior to 2.5 Description: The issue concerns the lack of a CSRF check when resetting settings, which could allow attackers to make a logged-in admin reset them via a CSRF attack. Recommendations...

WordPress Muslim Prayer Time BD Plugin <= 2.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Muslim Prayer Time BD Type Plugin Vulnerable versions = 2.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-4758 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ee80ee2ae4c1 Credits Bob Matyas Require...

WordPress Plugin Muslim Prayer Time BD Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF

Description The plugin does not have CSRF check in place when reseting its settings, which could allow attackers to make a logged in admin reset them via a CSRF attack PoC Make a logged in admin open an HTML file containing:...

Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF

Description The plugin does not have CSRF check in place when reseting its settings, which could allow attackers to make a logged in admin reset them via a CSRF attack Make a logged in admin open an HTML file containing:...

muslim-friendly.com Cross Site Scripting vulnerability OBB-3218718

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

muslim-info.ru Cross Site Scripting vulnerability OBB-3112946

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...