14 matches found
WordPress plugin RepairBuddy has a security vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
EUVD-2025-8699
Malicious code in bioql PyPI...
EUVD-2023-12684
Malicious code in bioql PyPI...
CVE-2023-0650
A vulnerability was found in YAFNET up to 3.1.11 and classified as problematic. This issue affects some unknown processing of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may...
CVE-2025-2975
A vulnerability was found in GFI KerioConnect 10.0.6 and classified as problematic. This issue affects some unknown processing of the file Settings/Email/Signature/EditHtmlSource of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2025-2975
A vulnerability was found in GFI KerioConnect 10.0.6 and classified as problematic. This issue affects some unknown processing of the file Settings/Email/Signature/EditHtmlSource of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2025-2975 GFI KerioConnect Signature EditHtmlSource cross site scripting
A vulnerability was found in GFI KerioConnect 10.0.6 and classified as problematic. This issue affects some unknown processing of the file Settings/Email/Signature/EditHtmlSource of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2025-2975 GFI KerioConnect Signature EditHtmlSource cross site scripting
A vulnerability was found in GFI KerioConnect 10.0.6 and classified as problematic. This issue affects some unknown processing of the file Settings/Email/Signature/EditHtmlSource of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated...
CVE-2025-2975
CVE-2025-2975 affects GFI KerioConnect 10.0.6; vulnerability in the Signature Handler’s Signature/EditHtmlSource processing leads to cross-site scripting. Exploitation is remote and public; no remediation/versioned fix is specified in the provided documents. Connected sources confirm affected com...
GFI KerioConnect 代码注入漏洞
GFI KerioConnect is an enterprise-grade email and collaboration solution from GFI that provides mail, calendar, contacts, tasks, and file sharing. A code injection vulnerability exists in GFI KerioConnect version 10.0.6, which stems from a cross-site scripting vulnerability in the Signature Handl...
CVE-2023-0650
A vulnerability was found in YAFNET up to 3.1.11 and classified as problematic. This issue affects some unknown processing of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may...
CVE-2023-0650 YAFNET Signature cross site scripting
A vulnerability was found in YAFNET up to 3.1.11 and classified as problematic. This issue affects some unknown processing of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may...
PT-2023-16427 · Yafnet · Yafnet
Name of the Vulnerable Software and Affected Versions: YAFNET versions up to 3.1.11 Description: A vulnerability was found in the Signature Handler component of YAFNET, which can lead to cross-site scripting. The attack may be initiated remotely. The issue affects some unknown processing of this...
YAFNET 跨站脚本漏洞
YAFNET is an ASP.NET open source forum solution for YAFNET individual developers. A cross-site scripting vulnerability exists in YAFNET versions prior to 3.1.11, which stems from unknown handling of the component Signature Handler, resulting in cross-site scripting XSS...