429 matches found
PT-2025-47511
Name of the Vulnerable Software and Affected Versions Rallly versions prior to 4.5.4 Description An authorization issue exists in Rallly, a scheduling and collaboration tool. An authenticated user can manipulate the pollId parameter to reopen finalized polls owned by other users. This can disrupt...
CVE-2025-12620
CVE-2025-12620 affects the WordPress plugin Poll Maker – Versus Polls, Anonymous Polls, Image Polls (versions up to and including 6.0.7). The root cause is insufficient escaping and inadequate preparation of the SQL query used with the filterbyauthor parameter, enabling an authenticated attacker ...
WordPress plugin Poll Maker – Versus Polls, Anonymous Polls, Image Polls SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...
Malicious code in lomi-fis-fakiugabas (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d8ced8477ad96bccf986313bc37c6914b558d9c6b9adaef7bacb48942e2f16b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-131128 Malicious code in vitreous_tiger_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b479e9e3fefe75f0c3d4239ebb8ade45f6ecf77cb59a0710855c2dd69d3a559e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in surya-dodol87-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 436c47eca413a33229e464c6aea9f5dd3b6c603171940dfb73dda9eaf9b4696c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in surprising_rook_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a57e925b3bf85e9f8ef3d28681ad0d84ebe7e6a630eeea214deac139a1cac9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sore-coffee-harrier (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 653ad8bbc54bf5eb77dc6dfa2bcab629e5e3875b5ed6edca1df603293f664d10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-63897 Malicious code in kurnia-nasi93-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39c4d57ea5a73864077d738a44129b20cd1ee5d776bab0eb4a2bf9479601af08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2010-1113
Malware in sbrugna...
EUVD-2020-16495
Malware in sbrugna...
EUVD-2015-9186
Malware in sbrugna...
EUVD-2015-9192
Malware in sbrugna...
EUVD-2010-1724
Malware in sbrugna...
EUVD-2010-1723
Malware in sbrugna...
EUVD-2016-1927
Malware in sbrugna...
EUVD-2014-4775
Malware in sbrugna...
EUVD-2008-6587
Malware in sbrugna...
EUVD-2014-1259
Malware in sbrugna...
EUVD-2011-1113
Malware in sbrugna...