133 matches found
A Bootiful Podcast: Spring Cloud guru Ryan Baxter
Hi, Spring fans! In this installment we talk to the amazing Spring Cloud contributor Ryan Baxter, live from SpringOne 2025!...
Malicious code in @zalastax/nolb-_ryan (npm)
The package @zalastax/nolb-ryan was found to contain malicious code...
MAL-2025-10385 Malicious code in @zalastax/nolb-_ryan (npm)
The package @zalastax/nolb-ryan was found to contain malicious code...
WordPress Premmerce plugin <= 1.3.19 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Ryan Novotny in WordPress Plugin Premmerce versions = 1.3.19...
WordPress Coupon Affiliates plugin <= 7.2.0 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Ryan Novotny in WordPress Plugin Coupon Affiliates versions = 7.2.0...
CVE-2025-49429
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Video Embeds video-embeds allows Stored XSS.This issue affects Video Embeds: from n/a through = 0.1.1...
CVE-2025-49429
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Video Embeds video-embeds allows Stored XSS.This issue affects Video Embeds: from n/a through = 0.1.1...
CVE-2025-49429
CVE-2025-49429 is a Stored Cross‑Site Scripting (XSS) in the Video Embeds WordPress plugin. Root cause: improper neutralization of input during web page generation. Affected software: Video Embeds (versions up to 0.1.1; range indicated as from n/a through 0.1.1). Documented CVSS: 3.1 base score 6...
PT-2025-24260 · Unknown · Ryan Burnette Video Embeds
Name of the Vulnerable Software and Affected Versions: Ryan Burnette Video Embeds versions 0.1.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored XSS attacks. This means that an attacker can inject malicious...
WordPress WC MyParcel Belgium plugin <= 4.5.5-beta - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Ryan Novotny in WordPress Plugin WC MyParcel Belgium versions = 4.5.5-beta...
CVE-2024-24929
Cross-Site Request Forgery CSRF vulnerability in Ryan Duff, Peter Westwood WP Contact Form.This issue affects WP Contact Form: from n/a through 1.6...
CVE-2024-51887
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ryscript NV Slider nv-slider allows Stored XSS.This issue affects NV Slider: from n/a through = 1.6...
CVE-2024-54396
Cross-Site Request Forgery CSRF vulnerability in elmervillanueva Bet sport Free bet-sport-free allows Cross Site Request Forgery.This issue affects Bet sport Free: from n/a through = 1.0.0...
WordPress ReDi Restaurant Reservation plugin <= 24.1209 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Ryan Novotny in WordPress Plugin ReDi Restaurant Reservation versions = 24.1209...
WordPress Category Widget plugin <= 2.0.2 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by noven in WordPress Plugin Category Widget versions = 2.0.2...
CVE-2025-23443 WordPress Author Showcase plugin <= 1.4.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Claire Ryan Author Showcase author-showcase allows Reflected XSS.This issue affects Author Showcase: from n/a through = 1.4.3...
PT-2025-17021 · Unknown · Claire Ryan Author Showcase
Name of the Vulnerable Software and Affected Versions: Claire Ryan Author Showcase versions 1.4.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This enables an attacker ...
CVE-2024-54403
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in oktoberfive Visual Recent Posts visual-recent-posts allows Reflected XSS.This issue affects Visual Recent Posts: from n/a through = 1.2.3...
CVE-2025-23661
Cross-Site Request Forgery CSRF vulnerability in ryscript NV Slider nv-slider allows Stored XSS.This issue affects NV Slider: from n/a through = 1.6...
WordPress MAS Elementor plugin <= 1.1.7 - Authenticated (Author+) Stored Cross-Site Scripting via SVG vulnerability
Authenticated Author+ Stored Cross-Site Scripting via SVG vulnerability discovered by Ryan Zegar in WordPress Plugin MAS Elementor versions = 1.1.7...