EUVD-2024-34799

Malicious code in bioql PyPI...

CVE-2024-34439

Cross-Site Request Forgery CSRF vulnerability in divSpot DS Site Message.This issue affects DS Site Message: from n/a through 1.14.4...

CVE-2024-34439

Cross-Site Request Forgery CSRF vulnerability in divSpot DS Site Message.This issue affects DS Site Message: from n/a through 1.14.4...

WordPress plugin DS Site Message 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

CVE-2024-34439 WordPress DS Site Message plugin <= 1.14.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in divSpot DS Site Message.This issue affects DS Site Message: from n/a through 1.14.4...

CVE-2024-34439 WordPress DS Site Message plugin <= 1.14.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in divSpot DS Site Message.This issue affects DS Site Message: from n/a through 1.14.4...

CVE-2024-34439

CVE-2024-34439 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin DS Site Message (affecting versions up to and including 1.14.4). Public metrics classify it as Medium severity (CVSS 3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N) with minimal impact: confidentiality none, int...

PT-2024-25892 · Unknown · Divspot Ds Site Message

Name of the Vulnerable Software and Affected Versions: divSpot DS Site Message versions 1.14.4 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the software. This type of issue allows an attacker to trick a user into performing unintended actions on a web application that...

WordPress DS Site Message plugin <= 1.14.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by umi Patchstack Alliance in WordPress Plugin DS Site Message versions = 1.14.4...

WordPress DS Site Message Plugin <= 1.14.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software DS Site Message Type Plugin Vulnerable versions = 1.14.4 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Cross Site Request Forgery CSRF CVE CVE-2024-34439 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ed0d196473d6 Credits umi Required privilege...

DESTOON 20140625版本站内信XSS

简要描述： 只测试了ie6，弹了个框框。 详细说明： function dsafe$string ifisarray$string return arraymap'dsafe', $string; else $string = pregreplace"//", "", $string; $string = pregreplace"//\s\S?\//", "", $string; $string = pregreplace"/&a-z0-9+;/i", "", $string; ifpregmatch"/&a-z0-9+;/i", $string return...

OpenFTPd 0.30.1 - message system Remote Shell

OpenFTPd 0.30.1 - message system Remote Shell / shouts to mitakeet :D exploit for openftpd format string bug. tested on most current version only. -infamous42md AT hotpop DOT com is real email only tricky part is find a place to stick the shell, as there isn't enough room to send it with the form...