17 matches found
EUVD-2018-0732
Malware in sbrugna...
EUVD-2019-8135
Malware in sbrugna...
EUVD-2019-7197
Malware in sbrugna...
EUVD-2021-11498
Malware in sbrugna...
EUVD-2019-13118
Malware in sbrugna...
EUVD-2025-8811
Malicious code in bioql PyPI...
EUVD-2024-34534
Malicious code in bioql PyPI...
CVE-2025-22315
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPDeveloper Typing Text typing-text allows Stored XSS.This issue affects Typing Text: from n/a through = 1.2.7...
CVE-2023-28875
A Stored XSS issue in shared files download terms in Filerun Update 20220202 allows attackers to inject JavaScript code that is executed when a user follows the crafted share link...
CVE-2021-24315
The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.4 did not sanitise or escape the Background Image field of its Stripe Checkout Setting and Logo field in its Email settings, leading to authenticated admin+ Stored XSS issues...
PT-2025-16960 · Liferay · Liferay Dxp +1
Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.2.0 through 7.4.3.129 Liferay DXP versions 2024.Q4.1 through 2024.Q4.7 Liferay DXP versions 2024.Q3.1 through 2024.Q3.9 Liferay DXP versions 2024.Q2.0 through 2024.Q2.13 Liferay DXP versions 2024.Q1.1 through...
PT-2025-17084 · WordPress · Websitedefender Wp Secure
Name of the Vulnerable Software and Affected Versions: WebsiteDefender wp secure versions 1.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can...
CVE-2025-31032 WordPress Pagopar – WooCommerce Gateway plugin <= 2.7.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Pagopar - Grupo M S.A. Pagopar – WooCommerce Gateway pagopar-woocommerce-gateway allows Stored XSS.This issue affects Pagopar – WooCommerce Gateway: from n/a through = 2.7.1...
PT-2025-15792 · Woocommerce · Chillpay Woocommerce
Name of the Vulnerable Software and Affected Versions: ChillPay WooCommerce versions through 2.5.3 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables potential attackers to inject...
CVE-2025-26896
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vpiwigo PiwigoPress piwigopress allows Stored XSS.This issue affects PiwigoPress: from n/a through = 2.33...
PT-2022-25413 · 10Web · The Photo Gallery
Name of the Vulnerable Software and Affected Versions: The Photo Gallery by 10Web WordPress plugin versions prior to 1.8.3 Description: The issue arises from the plugin's failure to validate and escape certain parameters before outputting them in JS code on another page. This could lead to a Stor...
WordPress plugin cross-site scripting vulnerability (CNVD-2021-40772)
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in Easy...