16 matches found
EUVD-2025-31260
Malicious code in bioql PyPI...
EUVD-2025-31259
Malicious code in bioql PyPI...
CVE-2025-60144
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Lenix scss compiler lenix-scss-compiler allows Stored XSS.This issue affects Lenix scss compiler: from n/a through = 1.2...
WordPress Lenix scss compiler Plugin <= 1.2 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin Lenix scss compiler versions = 1.2...
CVE-2025-60144
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Lenix scss compiler lenix-scss-compiler allows Stored XSS.This issue affects Lenix scss compiler: from n/a through = 1.2...
CVE-2025-60145 WordPress Lenix scss compiler Plugin <= 1.2 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in yonifre Lenix scss compiler lenix-scss-compiler allows Cross Site Request Forgery.This issue affects Lenix scss compiler: from n/a through = 1.2...
CVE-2025-60145
CVE-2025-60145 : CSRF in the Lenix scss compiler (WordPress plugin lenix-scss-compiler) affects versions up to 1.2.0. Description states Cross-Site Request Forgery with CVSS 3.1 base score 4.3 (Medium); attacker requires user interaction. No explicit exploit details or patched version are provide...
CVE-2025-60144 WordPress Lenix scss compiler Plugin <= 1.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Lenix scss compiler lenix-scss-compiler allows Stored XSS.This issue affects Lenix scss compiler: from n/a through = 1.2...
CVE-2025-60144
CVE-2025-60144 concerns Stored XSS in the Lenix scss compiler caused by improper input neutralization during web page generation. Affected product: Lenix scss compiler (yonifre Lenix scss compiler) versions from n/a up to and including 1.2. The provided documents do not include exploitation detai...
CVE-2025-60144 WordPress Lenix scss compiler Plugin <= 1.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in yonifre Lenix scss compiler lenix-scss-compiler allows Stored XSS.This issue affects Lenix scss compiler: from n/a through = 1.2...
WordPress plugin Lenix scss compiler 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin ... A cross-site reques...
WordPress plugin Lenix scss compiler 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin ... A cross-site...
PT-2025-39587
Name of the Vulnerable Software and Affected Versions yonifre Lenix scss compiler versions through 1.2 Description A flaw exists in the yonifre Lenix scss compiler that allows for Stored Cross-site Scripting XSS. This issue is due to improper neutralization of input during web page generation. Th...
WordPress Happy SCSS Compiler - Compile SCSS to CSS automatically plugin <= 1.3.10 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
WordPress Happy SCSS Compiler - Compile SCSS to CSS automatically plugin = 1.3.10 - Missing Authorization to Authenticated Subscriber+ Stored Cross-Site Scripting vulnerability discovered by Lucio Sá in WordPress Plugin SCSS Happy Compiler versions = 1.3.10...
CVE-2024-5600 Happy SCSS Compiler - Compile SCSS to CSS automatically <= 1.3.10 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting
The SCSS Happy Compiler – Compile SCSS to CSS & Automatic Enqueue plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to a missing capability check and insufficient sanitization on the importsettings function in all versions up to, and including, 1.3.10. This makes it possible f...
CVE-2024-5600 Happy SCSS Compiler - Compile SCSS to CSS automatically <= 1.3.10 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting
The SCSS Happy Compiler – Compile SCSS to CSS & Automatic Enqueue plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to a missing capability check and insufficient sanitization on the importsettings function in all versions up to, and including, 1.3.10. This makes it possible f...