12 matches found
CVE-2026-6294
The Google PageRank Display plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to and including 1.4. This is due to missing nonce validation in the gpdisplayoption function, which handles the plugin settings page. The settings form does not include a wpnoncefield, and...
CVE-2026-6294
CVE-2026-6294 concerns the WordPress plugin Google PageRank Display (versions ≤ 1.4). The root cause is missing nonce validation in gpdisplay_option(), with the settings form lacking wp_nonce_field() and the handler not calling check_admin_referer() or wp_verify_nonce() before processing POST req...
MPOCryptoML: Multi-Pattern Based Off-Chain Crypto Money Laundering Detection
Recent advancements in money laundering detection have demonstrated the potential of using graph neural networks to capture laundering patterns accurately. However, existing models are not explicitly designed to detect the diverse patterns of off-chain cryptocurrency money laundering. Neglecting...
Trustworthy Reputation Games and Applications to Proof-Of-Reputation Blockchains
Reputation systems play an essential role in the Internet era, as they enable people to decide whom to trust, by collecting and aggregating data about users' behavior. Recently, several works proposed the use of reputation for the design and scalability improvement of decentralized blockchain...
galaxyarcade.co.uk XSS vulnerability
Vulnerable URL: http://www.galaxyarcade.co.uk/tellafriend.php?gamename=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2941959 Google...
EziScript Google Page Rank 1.1 Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38266/info EziScript Google Page Rank is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in...
EziScript Google Page Rank 1.1 - Cross-Site Scripting
EziScript Google Page Rank 1.1 - Cross-Site Scripting source: https://www.securityfocus.com/bid/38266/info EziScript Google Page Rank is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...
EziScript Google Page Rank 1.1 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/38266/info EziScript Google Page Rank is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...
Unfixed XSS vulnerability at www.mmdigest.com
Security researcher Mystick, has submitted on 24/12/2008 a cross-site-scripting XSS vulnerability affecting www.mmdigest.com, which at the time of submission ranked 724984 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 25/12/2008. It is...
Unfixed XSS vulnerability at www.hadassah-col.ac.il
Security researcher ZuLL, has submitted on 27/09/2007 a cross-site-scripting XSS vulnerability affecting www.hadassah-col.ac.il, which at the time of submission ranked 334421 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/09/2007. It is...
Unfixed XSS vulnerability at www.rosamobilya.com.tr
Security researcher BackDoor, has submitted on 16/09/2007 a cross-site-scripting XSS vulnerability affecting www.rosamobilya.com.tr, which at the time of submission ranked 2409936 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2007. It i...
Unfixed XSS vulnerability at www.googleguide.com
Security researcher FrostMaturidi, has submitted on 06/07/2007 a cross-site-scripting XSS vulnerability affecting www.googleguide.com, which at the time of submission ranked 41839 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2007. It i...