25 matches found
EUVD-2022-44746
Malicious code in bioql PyPI...
EUVD-2024-35536
Malicious code in bioql PyPI...
EUVD-2024-35527
Malicious code in bioql PyPI...
EUVD-2022-46462
Malicious code in bioql PyPI...
CVE-2022-43461
Stored Cross-Site Scripting XSS vulnerability in John West Slideshow SE plugin = 2.5.5 versions...
CVE-2024-35778
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in John West Slideshow SE PHP Local File Inclusion.This issue affects Slideshow SE: from n/a through 2.5.17...
CVE-2024-35778
CVE-2024-35778 corresponds to a Path Traversal (Local File Inclusion) affecting Slideshow SE for WordPress, through version 2.5.17. The vulnerability is described as an Authenticated (Author+) LFI with path traversal in PHP. The Wordfence vulnerability listing for Slideshow SE indicates the issue...
CVE-2024-35778 WordPress Slideshow SE plugin <= 2.5.17 - Auth. Limited Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in John West Slideshow SE PHP Local File Inclusion.This issue affects Slideshow SE: from n/a through 2.5.17...
CVE-2024-35778 WordPress Slideshow SE plugin <= 2.5.17 - Auth. Limited Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in John West Slideshow SE PHP Local File Inclusion.This issue affects Slideshow SE: from n/a through 2.5.17...
CVE-2024-35769
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in John West Slideshow SE allows Stored XSS.This issue affects Slideshow SE: from n/a through 2.5.17...
CVE-2024-35769
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in John West Slideshow SE allows Stored XSS.This issue affects Slideshow SE: from n/a through 2.5.17...
CVE-2024-35769 WordPress Slideshow SE plugin <= 2.5.20 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in John West Slideshow SE slideshow-se allows DOM-Based XSS.This issue affects Slideshow SE: from n/a through = 2.5.20...
CVE-2024-35769 WordPress Slideshow SE plugin <= 2.5.17 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in John West Slideshow SE allows Stored XSS.This issue affects Slideshow SE: from n/a through 2.5.17...
WordPress plugin Slideshow SE cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...
WordPress plugin Slideshow SE path traversal vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
WordPress Slideshow SE plugin <= 2.5.17 - Author+ Limited Local File Inclusion vulnerability
Author+ Limited Local File Inclusion vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Slideshow SE versions = 2.5.17...
WordPress Slideshow SE Plugin <= 2.5.17 is vulnerable to Local File Inclusion
Software Slideshow SE Type Plugin Vulnerable versions = 2.5.17 Fixed in 2.5.18 OWASP Top 10 A1: Broken Access Control Classification Local File Inclusion CVE CVE-2024-35778 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7958c856162d Credits João Pedro S Alcântara Kinorth...
WordPress Slideshow SE plugin <= 2.5.20 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Slideshow SE versions = 2.5.20...
WordPress Slideshow SE Plugin <= 2.5.20 is vulnerable to Cross Site Scripting (XSS)
Software Slideshow SE Type Plugin Vulnerable versions = 2.5.20 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35769 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 5064bdc28526 Credits Steven Julian Required privilege Author...
Cross site scripting
Stored Cross-Site Scripting XSS vulnerability in John West Slideshow SE plugin = 2.5.5 versions...