173 matches found
CVE-2025-24749
Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...
CVE-2025-24749
Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...
CVE-2025-24749 WordPress EZPZ SAML SP Single Sign On (SSO) plugin <= 1.2.5 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...
CVE-2024-37205
Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4...
CVE-2024-37205
CVE-2024-37205 affects the WordPress affiliate-toolkit plugin up to version 3.4.4. The issue is the insertion of sensitive information into log files, which may expose data. CVSS v3.1 base score 5.3 (Medium). Patch status in the connected data shows Patched; no exploit details are provided.
CVE-2024-37205 WordPress affiliate-toolkit plugin <= 3.4.4 - Sensitive Data Exposure via Log File vulnerability
Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4...
CVE-2024-37205 WordPress affiliate-toolkit plugin <= 3.4.4 - Sensitive Data Exposure via Log File vulnerability
Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4...
Savignano Software Solutions S/Notify Security Breach
Savignano Software Solutions S/Notify is an email encryption program from Savignano Software Solutions, Germany. A security vulnerability previously existed in Savignano Software Solutions S/Notify version 4.0.2, which stemmed from the presence of a cross-site request forgery CSRF vulnerability...
CVE-2024-25376
An issue discovered in Thesycon Software Solutions Gmbh & Co. KG TUSBAudio MSI-based installers before 5.68.0 allows a local attacker to execute arbitrary code via the msiexec.exe repair mode...
CVE-2024-29817
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit allows Stored XSS.This issue affects affiliate-toolkit: from n/a through 3.4.5...
CVE-2024-29817 WordPress affiliate-toolkit – WordPress Affiliate Plugin plugin <= 3.4.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit allows Stored XSS.This issue affects affiliate-toolkit: from n/a through 3.4.5...
CVE-2024-29817
CVE-2024-29817 affects the WordPress plugin affiliate-toolkit (affiliate-toolkit – WordPress Affiliate Plugin). It is a Stored Cross‑Site Scripting vulnerability caused by improper input neutralization during web page generation, specifically related to the ratings/input handling path. Affected v...
Open redirect
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.3.9...
CVE-2023-45105
CVE-2023-45105 is an Open Redirect vulnerability in the WordPress plugin affiliate-toolkit – WordPress Affiliate Plugin for versions ≤ 3.3.9. The root cause is insufficient URL validation in the plugin’s redirect flow (atkpout.php), allowing unauthenticated attackers to redirect users to untruste...
CVE-2023-46086
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...
CVE-2023-46086
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...
CVE-2023-46086 WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS)
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...
CVE-2022-46484
Information disclosure in password protected surveys in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and below allows attackers to view the password to access and arbitrarily submit surveys...
CVE-2022-46484
The CVE-2022-46484 entry affects Data Illusion Survey Software Solutions NGSurvey (NGSurvey) v2.4.28 and earlier. The vulnerability enables information disclosure by allowing attackers to view the access password, which in turn could be used to access and arbitrarily submit surveys. The connected...