10 matches found
MAL-2023-93 Malicious code in angra_temple_of_shadows_songbook_pdf_105_kssry (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fd6df7b7b696150a1e7a19bda7c02dda2686dd2e2be7b1cf257c6fb4c9de50c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in angra_temple_of_shadows_songbook_pdf_105_kssry (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fd6df7b7b696150a1e7a19bda7c02dda2686dd2e2be7b1cf257c6fb4c9de50c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2021-34655
The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...
CVE-2021-34655
The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...
Cross site scripting
The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...
CVE-2021-34655 WP Songbook <= 2.0.11 Reflected Cross-Site Scripting
The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...
CVE-2021-34655
The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter in ~/inc/class.ajax.php, affecting versions up to 2.0.11. This allows injecting arbitrary web scripts. Exploitation status and fixes are not provided in the supplied documents; no remediation de...
CVE-2021-34655 WP Songbook <= 2.0.11 Reflected Cross-Site Scripting
The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...
WordPress WP Songbook <= 2.0.11 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by p7e4 in WordPress WP Songbook versions = 2.0.11. Solution This plugin has been closed as of August 12, 2021 and is not available for download. This closure is temporary, pending a full review...
@alex.garcia/oak (>=0.0.17 <=0.0.19), @apify/better-sqlite3-prebuilds (=7.1.1) +195 more potentially affected by CVE-2021-32803 via tar (>=4.0.1 <=4.4.13)
tar NPM version =4.0.1, =0.0.17, =0.0.1, =0.2.0, =0.2.0, =3.0.7, =3.0.6, =1.4.0, =1.0.0, =1.0.0-alpha.1, =1.10.9-beta, =1.0.0, =1.1.4, =2.1.0, =2.2.0 and more Source cves: CVE-2021-32803 Source advisory: OSV:GHSA-R628-MHMH-QJHW...