33 matches found
EUVD-2025-26963
Malicious code in bioql PyPI...
EUVD-2023-12880
Malicious code in bioql PyPI...
EUVD-2023-46359
Malicious code in bioql PyPI...
CVE-2025-58814
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ram Ratan Maurya Stagtools stagtools allows Stored XSS.This issue affects Stagtools: from n/a through = 2.3.8...
CVE-2025-58814
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ram Ratan Maurya Stagtools stagtools allows Stored XSS.This issue affects Stagtools: from n/a through = 2.3.8...
CVE-2025-58814 WordPress Stagtools Plugin <= 2.3.8 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ram Ratan Maurya Stagtools stagtools allows Stored XSS.This issue affects Stagtools: from n/a through = 2.3.8...
CVE-2025-58814 WordPress Stagtools Plugin <= 2.3.8 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ram Ratan Maurya Stagtools stagtools allows Stored XSS.This issue affects Stagtools: from n/a through = 2.3.8...
CVE-2025-58814
CVE-2025-58814 describes a Stored Cross-Site Scripting (XSS) in WordPress plugin StagTools up to version 2.3.8, caused by improper input neutralization during web page generation. Public details confirm the affected software, version range (
WordPress Stagtools Plugin <= 2.3.8 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by theviper17 in WordPress Plugin Stagtools versions = 2.3.8...
PT-2025-36153
Name of the Vulnerable Software and Affected Versions: Stagtools versions through 2.3.8 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting XSS. Recommendations: Update Stagtools to a version later...
WordPress plugin Stagtools 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2023-0891
The StagTools WordPress plugin before 2.3.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2023-41868
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ram Ratan Maurya, Codestag StagTools plugin = 2.3.7 versions...
CVE-2023-41868
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ram Ratan Maurya, Codestag StagTools plugin = 2.3.7 versions...
CVE-2023-41868
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ram Ratan Maurya, Codestag StagTools plugin = 2.3.7 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ram Ratan Maurya, Codestag StagTools plugin = 2.3.7 versions...
CVE-2023-41868
CVE-2023-41868 : An unauthenticated reflected XSS vulnerability affects the WordPress StagTools (Codestag) plugin = 2.3.8).
CVE-2023-41868 WordPress Stagtools Plugin <= 2.3.7 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ram Ratan Maurya, Codestag StagTools plugin = 2.3.7 versions...
CVE-2023-41868 WordPress Stagtools Plugin <= 2.3.7 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ram Ratan Maurya, Codestag StagTools plugin = 2.3.7 versions...
PT-2023-28130 · Codestag · Codestag Stagtools
Name of the Vulnerable Software and Affected Versions: Codestag StagTools plugin versions = 2.3.7 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing them to steal user...