CVE-2025-8046 Injection Guard < 1.2.8 - Reflected XSS via $_SERVER['REQUEST_URI']

The Injection Guard WordPress plugin before 1.2.8 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

GHSA-P4G9-C9QR-WMG5 Cross-site Scripting in django-ajax-utilities

A vulnerability was found in Mobile Vikings Django AJAX Utilities and classified as problematic. This issue affects the function Pagination of the file djangoajax/static/ajax-utilities/js/pagination.js of the component Backslash Handler. The manipulation of the argument url leads to cross site...

Cross-site Scripting in django-ajax-utilities

A vulnerability was found in Mobile Vikings Django AJAX Utilities and classified as problematic. This issue affects the function Pagination of the file djangoajax/static/ajax-utilities/js/pagination.js of the component Backslash Handler. The manipulation of the argument url leads to cross site...

PT-2023-10633 · Mobile Vikings · Mobile Vikings Django Ajax Utilities

Name of the Vulnerable Software and Affected Versions: Mobile Vikings Django AJAX Utilities versions up to 1.2.1 Description: A problematic issue affects the Pagination function of the django ajax/static/ajax-utilities/js/pagination.js file in the Backslash Handler component. The manipulation of...