57 matches found
CVE-2017-18604
The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via an AJAX request...
EUVD-2003-0747
Malware in sbrugna...
EUVD-2008-1132
Malware in sbrugna...
EUVD-2017-9717
Malware in sbrugna...
EUVD-2011-4695
Malware in sbrugna...
EUVD-2006-3391
Malware in sbrugna...
EUVD-2024-43488
Malicious code in bioql PyPI...
CVE-2003-0756
Directory traversal vulnerability in sitebuilder.cgi in SiteBuilder 1.4 allows remote attackers to read arbitrary files via .. dot dot sequences in the selectedpage parameter...
CVE-2024-49625
Deserialization of Untrusted Data vulnerability in sphoid SiteBuilder Dynamic Components sitebuilder-dynamic-components allows Object Injection.This issue affects SiteBuilder Dynamic Components: from n/a through = 1.0...
CVE-2024-49625
Deserialization of Untrusted Data vulnerability in sphoid SiteBuilder Dynamic Components sitebuilder-dynamic-components allows Object Injection.This issue affects SiteBuilder Dynamic Components: from n/a through = 1.0...
CVE-2024-49625
Deserialization of Untrusted Data vulnerability in Brandon Clark SiteBuilder Dynamic Components allows Object Injection.This issue affects SiteBuilder Dynamic Components: from n/a through 1.0...
CVE-2024-49625 WordPress SiteBuilder Dynamic Components plugin <= 1.0 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in sphoid SiteBuilder Dynamic Components sitebuilder-dynamic-components allows Object Injection.This issue affects SiteBuilder Dynamic Components: from n/a through = 1.0...
CVE-2024-49625
CVE-2024-49625 describes a deserialization of untrusted data vulnerability in SiteBuilder Dynamic Components (WordPress plugin) allowing PHP Object Injection. Affected: SiteBuilder Dynamic Components versions from n/a through 1.0. CVSS v3.1 vector shows high impact (9.8, CRITICAL) withNETWORK/no ...
WordPress plugin SiteBuilder Dynamic Components 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in WordPres...
PT-2024-33580 · Brandon Clark · Brandon Clark Sitebuilder Dynamic Components
Name of the Vulnerable Software and Affected Versions: Brandon Clark SiteBuilder Dynamic Components versions n/a through 1.0 Description: The issue is related to Deserialization of Untrusted Data, which allows Object Injection in Brandon Clark SiteBuilder Dynamic Components. Recommendations: For...
WordPress SiteBuilder Dynamic Components plugin <= 1.0 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin SiteBuilder Dynamic Components versions = 1.0...
WordPress SiteBuilder Dynamic Components Plugin <= 1.0 is vulnerable to PHP Object Injection
Software SiteBuilder Dynamic Components Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-49625 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 7e4e11ce38e6 Credits Mika Required privilege...
SQL Injection Vulnerability in SiteBuilder System
siteBuilder is a self-service website building system. A SQL injection vulnerability exists in the site builder system. An attacker can exploit the vulnerability to obtain sensitive database information...
WordPress sitebuilder-dynamic-components plugin injection vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. sitebuilder-dynamic-components is a plugin for inserting dynamic content into static pages. An injection vulnerability exists in the...
CVE-2017-18604
The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via an AJAX request...