61 matches found
EUVD-2025-26219
Malicious code in bioql PyPI...
EUVD-2025-25248
Malicious code in bioql PyPI...
EUVD-2025-25250
Malicious code in bioql PyPI...
EUVD-2025-25252
Malicious code in bioql PyPI...
EUVD-2025-28820
Malicious code in bioql PyPI...
EUVD-2025-28821
Malicious code in bioql PyPI...
EUVD-2025-26221
Malicious code in bioql PyPI...
CVE-2025-55579
SolidInvoice version 2.3.7 is vulnerable to a Stored Cross-Site Scripting XSS issue in the Tax Rates functionality. The vulnerability is fixed in version 2.3.8...
CVE-2025-55580
SolidInvoice version 2.3.7 is vulnerable to a stored cross-site scripting XSS issue in the Clients module. An authenticated attacker can inject JavaScript that executes in other users' browsers when the Clients page is viewed. The vulnerability is fixed in version 2.3.8...
CVE-2025-55580
SolidInvoice version 2.3.7 is vulnerable to a stored cross-site scripting XSS issue in the Clients module. An authenticated attacker can inject JavaScript that executes in other users' browsers when the Clients page is viewed. The vulnerability is fixed in version 2.3.8...
CVE-2025-55580
SolidInvoice version 2.3.7 is vulnerable to a stored cross-site scripting XSS issue in the Clients module. An authenticated attacker can inject JavaScript that executes in other users' browsers when the Clients page is viewed. The vulnerability is fixed in version 2.3.8...
CVE-2025-55579
SolidInvoice version 2.3.7 is vulnerable to a Stored Cross-Site Scripting XSS issue in the Tax Rates functionality. The vulnerability is fixed in version 2.3.8...
CVE-2025-55579
SolidInvoice version 2.3.7 is vulnerable to a Stored Cross-Site Scripting XSS issue in the Tax Rates functionality. The vulnerability is fixed in version 2.3.8...
SolidInvoice 安全漏洞
SolidInvoice is an invoice solution application from SolidInvoice Open Source. A security vulnerability exists in SolidInvoice versions 2.3.7 and 2.3.8 that stems from client-side functionality that is susceptible to cross-site scripting attacks...
CVE-2025-55580
SolidInvoice version 2.3.7 is vulnerable to a stored cross-site scripting XSS issue in the Clients module. An authenticated attacker can inject JavaScript that executes in other users' browsers when the Clients page is viewed. The vulnerability is fixed in version 2.3.8...
SolidInvoice 安全漏洞
SolidInvoice is an invoice solution application from SolidInvoice Open Source. A security vulnerability exists in SolidInvoice version 2.3.7, which stems from the tax rate feature being vulnerable to cross-site scripting attacks...
CVE-2025-55580
SolidInvoice version 2.3.7 is vulnerable to a stored cross-site scripting XSS issue in the Clients module. An authenticated attacker can inject JavaScript that executes in other users' browsers when the Clients page is viewed. The vulnerability is fixed in version 2.3.8...
CVE-2025-55580
CVE-2025-55580 affects SolidInvoice 2.3.7 with a stored XSS in the Clients module. An authenticated user can store JavaScript that executes in other users’ browsers when viewing the Clients page. A PoC exists in the linked GitHub exploit, which documents the vulnerable version (2.3.7) and the fix...
PT-2025-35249
Name of the Vulnerable Software and Affected Versions: SolidInvoice versions 2.3.7 through 2.3.8 Description: SolidInvoice is susceptible to a Cross-Site Scripting XSS issue within its client-side functionality. Recommendations: SolidInvoice version 2.3.7 should be updated. SolidInvoice version...
CVE-2025-55579
SolidInvoice 2.3.7 contains a stored XSS vulnerability in the Tax Rates feature. The underlying issue allows an authenticated attacker to store arbitrary JavaScript that executes in the context of other authenticated users who view the Tax Rates page. The fix is to upgrade to SolidInvoice 2.3.8 o...