EUVD-2023-49424

Malicious code in bioql PyPI...

EUVD-2023-51871

Malicious code in bioql PyPI...

CVE-2023-45103

Cross-Site Request Forgery CSRF vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

Permalinks Customizer <= 2.8.2 - Reflected Cross-Site Scripting

Description The Permalinks Customizer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via an unknown parameter in all versions up to, and including, 2.8.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to injec...

CVE-2023-47773

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

CVE-2023-47773

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

CVE-2023-47773

CVE-2023-47773 : Reflected Cross-Site Scripting in the WordPress plugin Permalinks Customizer (YAS Global Team) versions

WordPress Plugin Permalinks Customizer Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

PT-2023-30600 · Unknown · Yas Global Team Permalinks Customizer

Name of the Vulnerable Software and Affected Versions: YAS Global Team Permalinks Customizer plugin versions prior to 2.8.3 Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for potential malicious...

WordPress Permalinks Customizer Plugin <= 2.8.2 is vulnerable to Cross Site Scripting (XSS)

Software Permalinks Customizer Type Plugin Vulnerable versions = 2.8.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-47773 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 75025c824dd0 Credits Le Ngoc Anh Required privilege...

CVE-2023-45103

Cross-Site Request Forgery CSRF vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

CVE-2023-45103

Cross-Site Request Forgery CSRF vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

CVE-2023-45103

CVE-2023-45103 refers to a CSRF vulnerability in the WordPress plugin Permalinks Customizer (YAS Global Team Permalinks Customizer) affecting versions up to and including 2.8.2. The connected Patchstack/CVE-2023-45103 entries describe the issue as CSRF via post_settings, with an unpatched status ...

CVE-2023-45103 WordPress Permalinks Customizer Plugin <= 2.8.2 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in YAS Global Team Permalinks Customizer plugin = 2.8.2 versions...

WordPress plugin Permalinks Customizer Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

WordPress Permalinks Customizer Plugin <= 2.8.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Permalinks Customizer Type Plugin Vulnerable versions = 2.8.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45103 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID edea2f7e37f7 Credits Mika Required...