4 matches found
EUVD-2024-40082
Malicious code in bioql PyPI...
CVE-2024-43155
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins ComboBlocks allows Stored XSS.This issue affects ComboBlocks: from n/a through 2.2.86...
CVE-2024-43155
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins ComboBlocks allows Stored XSS.This issue affects ComboBlocks: from n/a through 2.2.86...
CVE-2024-43155
CVE-2024-43155 is an authenticated Stored XSS vulnerability in PickPlugins ComboBlocks, affecting versions up to 2.2.86. Exploitation requires a Contributor+ privilege and malicious input is stored during web page generation. The issue is publicly reported (Wordfence/WordPress vulnerability data)...