205 matches found
EUVD-2007-3350
Malware in sbrugna...
EUVD-2025-26969
Malicious code in bioql PyPI...
EUVD-2022-1658
Malicious code in bioql PyPI...
EUVD-2024-30619
Malicious code in bioql PyPI...
PT-2025-36148
Name of the Vulnerable Software and Affected Versions: To Lead For Salesforce versions n/a through 2.7.3.9 Description: A Cross-Site Request Forgery CSRF vulnerability exists in To Lead For Salesforce, which also allows Reflected Cross-Site Scripting XSS. Recommendations: Update To Lead For...
CVE-2025-51403
A stored cross-site scripting XSS vulnerability in the department assignment editing module of of Live Helper Chat v4.60 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Alias Nick parameter...
CVE-2025-51403
A stored cross-site scripting XSS vulnerability in the department assignment editing module of of Live Helper Chat v4.60 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Alias Nick parameter...
CVE-2025-51403
Vulnerability : CVE-2025-51403 affects Live Helper Chat (v4.60/v4.61 era) in the department assignment editing module. The issue is a stored XSS via the Alias Nick field, caused by insufficient validation/escaping of user input. Impact : stored XSS could allow a logged-in user with low privileges...
Exploit for Cross-site Scripting in Livehelperchat Live_Helper_Chat
Exploit Title: LiveHelperChat...
Drupal Simple XML sitemap module < 4.2.2 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS vulnerability discovered by Nick Vanpraet grayle in WordPress Module Simple XML sitemap versions 4.2.2...
CVE-2020-28847
Cross Site Scripting XSS vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment...
CVE-2025-31086
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WBW Plugins Product Table by WBW woo-product-tables allows Reflected XSS.This issue affects Product Table by WBW: from n/a through = 2.1.4...
CVE-2025-31086
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WBW Plugins Product Table by WBW woo-product-tables allows Reflected XSS.This issue affects Product Table by WBW: from n/a through = 2.1.4...
CVE-2025-30779
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nick van Wobbie Doneren met Mollie doneren-met-mollie allows Stored XSS.This issue affects Doneren met Mollie: from n/a through = 2.10.7...
CVE-2020-5282
In Nick Chan Bot before version 1.0.0-beta there is a vulnerability in the npm command which is part of this software package. This allows arbitrary shell execution,which can compromise the bot This is patched in version 1.0.0-beta...
CVE-2024-37545
CVE-2024-37545 (Floating Social Media Links) is a Stored XSS in the WordPress plugin. Affected: versions
CVE-2024-37545 WordPress Floating Social Media Links plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Nick Halsey Floating Social Media Links allows Stored XSS.This issue affects Floating Social Media Links: from n/a through 1.5.2...
CVE-2024-37545 WordPress Floating Social Media Links plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Nick Halsey Floating Social Media Links allows Stored XSS.This issue affects Floating Social Media Links: from n/a through 1.5.2...
Brazil Halts Meta's AI Data Processing Amid Privacy Concerns
Brazil's data protection authority, Autoridade Nacional de Proteção de Dados ANPD, has temporarily banned Meta from processing users' personal data to train the company's artificial intelligence AI algorithms. The ANPD said it found "evidence of processing of personal data based on inadequate leg...
CVE-2024-32833
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nick Halsey List Custom Taxonomy Widget allows Stored XSS.This issue affects List Custom Taxonomy Widget: from n/a through 4.1...