9 matches found
CVE-2025-13308
The Application Passwords plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'rejecturl' parameter in all versions up to, and including, 0.1.3. This is due to insufficient input sanitization and output escaping on user supplied URLs, which allows javascript: URI schemes ...
EUVD-2025-201527
The Application Passwords plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'rejecturl' parameter in all versions up to, and including, 0.1.3. This is due to insufficient input sanitization and output escaping on user supplied URLs, which allows javascript: URI schemes ...
CVE-2025-13308
The Application Passwords plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'rejecturl' parameter in all versions up to, and including, 0.1.3. This is due to insufficient input sanitization and output escaping on user supplied URLs, which allows javascript: URI schemes ...
EUVD-2022-49395
Malicious code in bioql PyPI...
CVE-2022-46591
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the rejecturl parameter in the reject sub41BD60 function...
Stack overflow
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the rejecturl parameter in the reject sub41BD60 function...
CVE-2022-46591
CVE-2022-46591 affects TRENDnet TEW755AP 1.13B01. A stack overflow is triggered by the reject_url input in the reject (sub_41BD60) function. Impact: potential arbitrary code execution on the device (high/critical ratings; CVSS v3.1: 9.8). Exploitation: PoC exists; attack vector is network with no...
CVE-2022-46591
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the rejecturl parameter in the reject sub41BD60 function...
CVE-2022-46591
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the rejecturl parameter in the reject sub41BD60 function...