16 matches found
CVE-2023-49179
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in N.O.U.S. Open Useful and Simple Event post allows Stored XSS.This issue affects Event post: from n/a through 5.8.6...
EUVD-2025-3790
Malicious code in bioql PyPI...
EUVD-2023-53184
Malicious code in bioql PyPI...
EUVD-2024-37583
Malicious code in bioql PyPI...
CVE-2025-24585
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bastien Ho Event post event-post allows Stored XSS.This issue affects Event post: from n/a through = 5.9.7...
CVE-2024-51865
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in leroysabrina Simple Social Share Block simple-social-share-block allows Stored XSS.This issue affects Simple Social Share Block: from n/a through = 1.0.0...
CVE-2024-38735
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Bastien Ho Event post event-post.This issue affects Event post: from n/a through = 5.9.5...
CVE-2025-24585
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bastien Ho Event post event-post allows Stored XSS.This issue affects Event post: from n/a through = 5.9.7...
CVE-2024-51865 WordPress Simple Social Share Block plugin <= 1.0.0 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in leroysabrina Simple Social Share Block simple-social-share-block allows Stored XSS.This issue affects Simple Social Share Block: from n/a through = 1.0.0...
CVE-2024-38735
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Bastien Ho Event post event-post.This issue affects Event post: from n/a through = 5.9.5...
CVE-2024-38735
CVE-2024-38735 is a path traversal-based local file inclusion in the WordPress Event post plugin (Event post). It allows PHP LFI by improper limitation of a pathname to a restricted directory, affecting Event post versions up to 5.9.5. The issue is marked as patched in 5.9.5; evaluate upgrading t...
CVE-2024-38735 WordPress Event post plugin <= 5.9.5 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Bastien Ho Event post event-post.This issue affects Event post: from n/a through = 5.9.5...
CVE-2023-49179
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in N.O.U.S. Open Useful and Simple Event post allows Stored XSS.This issue affects Event post: from n/a through 5.8.6...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in N.O.U.S. Open Useful and Simple Event post allows Stored XSS.This issue affects Event post: from n/a through 5.8.6...
CVE-2023-49179 WordPress Event post Plugin <= 5.8.6 is vulnerable to Cross Site Scripting (XSS)
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in N.O.U.S. Open Useful and Simple Event post allows Stored XSS.This issue affects Event post: from n/a through 5.8.6...
CVE-2023-49179
CVE-2023-49179 affects the WordPress plugin Event post (N.O.U.S. Open Useful and Simple Event post). The issue is an improper neutralization during web page generation that allows Stored XSS in Event posts, affecting versions up to 5.8.6. Impact is a stored cross-site scripting vulnerability (req...