CVE-2023-50898

Missing Authorization vulnerability in sirv.Com Sirv.This issue affects Sirv: from n/a through 7.1.2...

EUVD-2016-1941

Malware in sbrugna...

EUVD-2024-30721

Malicious code in bioql PyPI...

EUVD-2024-25123

Malicious code in bioql PyPI...

EUVD-2024-47499

Malicious code in bioql PyPI...

EUVD-2023-55631

Malicious code in bioql PyPI...

EUVD-2024-25124

Malicious code in bioql PyPI...

EUVD-2025-12302

Malicious code in bioql PyPI...

Directory Traversal

Overview sirv is a The optimized & lightweight middleware for serving requests to static assets Affected versions of this package are vulnerable to Directory Traversal via the viaLocal function, which uses a dirname prefix. An attacker can access files outside the intended public directory by...

@clidey/dory (=0.35.0), @praxlannister/mdexport-core (=2.0.0) +5 more potentially affected by CVE-2025-58751 via sirv (>=3.0.0 <=3.0.1)

sirv NPM version =3.0.0, =0.0.1, =9.0.0, =0.1.0, =0.12.3, =1.6.0, =1.7.0 Source cves: CVE-2025-58751 Source advisory: SNYK:JS-SIRV-12558119...

CVE-2024-27950

Missing Authorization vulnerability in Sirv CDN and Image Hosting Sirv sirv.This issue affects Sirv: from n/a through = 7.2.0...

CVE-2024-27949

Server-Side Request Forgery SSRF vulnerability in Sirv CDN and Image Hosting Sirv sirv.This issue affects Sirv: from n/a through = 7.2.0...

CVE-2016-10950

The sirv plugin before 1.3.2 for WordPress has SQL injection via the id parameter...

CVE-2025-46233

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sirv CDN and Image Hosting Sirv sirv allows Stored XSS.This issue affects Sirv: from n/a through = 7.5.3...

WordPress Sirv plugin <= 7.5.3 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Sirv versions = 7.5.3...

CVE-2025-46233

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sirv CDN and Image Hosting Sirv sirv allows Stored XSS.This issue affects Sirv: from n/a through = 7.5.3...

CVE-2025-46233

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sirv CDN and Image Hosting Sirv allows Stored XSS. This issue affects Sirv: from n/a through 7.5.3...

CVE-2025-46233

CVE-2025-46233: Stored XSS in WordPress Sirv plugin (vulnerable up to 7.5.3) due to improper input neutralization during web page generation. Impact is stored XSS; exploitation details are not provided in the included documents. Patch/source confirms a fix in 7.5.3; update to 7.5.3 or newer to re...

CVE-2025-46233 WordPress Sirv plugin <= 7.5.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sirv CDN and Image Hosting Sirv sirv allows Stored XSS.This issue affects Sirv: from n/a through = 7.5.3...

CVE-2025-46233 WordPress Sirv plugin <= 7.5.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sirv CDN and Image Hosting Sirv sirv allows Stored XSS.This issue affects Sirv: from n/a through = 7.5.3...