10 matches found
EUVD-2025-19914
Malicious code in bioql PyPI...
CVE-2025-6039
The ProcessingJS for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pjs4wp' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2025-6039
CVE-2025-6039 affects the ProcessingJS for WordPress plugin. The vulnerability is a Stored Cross-Site Scripting (XSS) via the plugin’s pjs4wp shortcode in all versions up to and including 1.2.2. With authenticated access at contributor level or higher , an attacker can inject scripts that execute...
CVE-2025-6039 ProcessingJS for WordPress <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
The ProcessingJS for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pjs4wp' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2025-6039 ProcessingJS for WordPress <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
The ProcessingJS for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pjs4wp' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
PT-2025-27845 · WordPress · Processingjs
Name of the Vulnerable Software and Affected Versions: ProcessingJS for WordPress versions 1.2.2 and earlier Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the pjs4wp shortcode. This allows authenticated attackers with...
WordPress plugin ProcessingJS for WordPress 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...
WordPress ProcessingJS for WordPress plugin <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by johska in WordPress Plugin ProcessingJS for WordPress versions = 1.2.2...
MAL-2022-5468 Malicious code in processingjs-ide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5eb583c6cb0ba811d26cef7eae413b6a98d8f6cafdea493467478bf610369089 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in processingjs-ide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5eb583c6cb0ba811d26cef7eae413b6a98d8f6cafdea493467478bf610369089 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...