7 matches found
EUVD-2024-34198
Malicious code in bioql PyPI...
CVE-2024-13348
...
CVE-2024-13348
CVE-2024-13348 is rejected; reference CVE-2025-22506 instead and not a live entry.
CVE-2025-22506 WordPress Smart Agenda Plugin <= 4.7 - CSRF to Stored XSS vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Smart Agenda Smart Agenda smart-agenda-prise-de-rendez-vous-en-ligne allows Stored XSS.This issue affects Smart Agenda: from n/a through = 4.7...
CVE-2024-11781
The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'smartagenda' shortcode in all versions up to, and including, 4.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...
CVE-2024-11781 Smart Agenda – Prise de rendez-vous en ligne <= 4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'smartagenda' shortcode in all versions up to, and including, 4.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...
CVE-2024-11781
CVE-2024-11781 affects the WordPress plugin Smart Agenda – Prise de rendez-vous en ligne (versions up to 4.6). It enables authenticated attackers with contributor+ rights to trigger a Stored Cross-Site Scripting via the plugin’s smartagenda shortcode attributes due to insufficient input sanitizat...