22 matches found
CVE-2025-23685
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebTechGlobal RomanCart romancart-on-wordpress allows Reflected XSS.This issue affects RomanCart: from n/a through = 0.0.2...
EUVD-2020-6810
Malware in sbrugna...
EUVD-2021-27095
Malware in sbrugna...
EUVD-2025-11123
Malicious code in bioql PyPI...
EUVD-2023-34331
Malicious code in bioql PyPI...
EUVD-2023-43789
Malicious code in bioql PyPI...
EUVD-2024-46101
Malicious code in bioql PyPI...
EUVD-2022-4065
Malicious code in bioql PyPI...
EUVD-2023-34211
Malicious code in bioql PyPI...
CVE-2025-54585 GitProxy is vulnerable to a new branch approval exploit
GitProxy is an application that stands between developers and a Git remote endpoint. In versions 1.19.1 and below, attackers can exploit the way GitProxy handles new branch creation to bypass the approval of prior commits on the parent branch. The vulnerability impacts all users or organizations...
CVE-2025-47575
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla School Management allows SQL Injection. This issue affects School Management: from n/a through 92.0.0...
CVE-2024-27985
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through 2.0.9...
CVE-2024-31361
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bunny.Net allows Stored XSS.This issue affects bunny.Net: from n/a through 2.0.1...
CVE-2022-43719
Two legacy REST API endpoints for approval and request access are vulnerable to cross site request forgery. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0...
CVE-2025-28923
Cross-Site Request Forgery CSRF vulnerability in philippe No Disposable Email no-disposable-email allows Stored XSS.This issue affects No Disposable Email: from n/a through = 2.5.1...
CVE-2025-23913
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in pankajpragma WordPress Google Map Professional google-map-professional allows SQL Injection.This issue affects WordPress Google Map Professional: from n/a through = 1.0...
CVE-2022-3283
A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1 While cloning an issue with special crafted content added to the description could have been used ...
CVE-2019-20638
NETGEAR MR1100 devices before 12.06.08.00 are affected by disclosure of administrative credentials...
CVE-2020-13290
In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page...
CVE-2024-13300
Vulnerability in Drupal Print Anything.This issue affects Print Anything:...