Lucene search
+L

674 matches found

EUVD
EUVD
added 2025/11/11 5:18 a.m.1 views

EUVD-2025-73471

Malicious code in strongravenz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 5:18 a.m.1 views

EUVD-2025-73472

Malicious code in strongpigrequirement npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 5:18 a.m.0 views

EUVD-2025-73473

Malicious code in strongcentipedez3n npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/11 5:18 a.m.1 views

MAL-2025-96818 Malicious code in strong_pig_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a56c44868c5c0fa99218f32d9f2b5c7d1fd71c5f5e422c92d35dea4a656a625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/11 12:41 a.m.0 views

EUVD-2025-51758

Malicious code in strong-yellow-bobolink npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 12:41 a.m.3 views

Malicious code in strong-coffee-firefly (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54751dab2c07637bb633b47ccc5b4b783ab0cb6a100fba3ec7417861addf4b8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/11 12:41 a.m.1 views

EUVD-2025-51759

Malicious code in strong-coffee-firefly npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/11 12:41 a.m.0 views

MAL-2025-70891 Malicious code in strong-yellow-bobolink (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4f82edad58dc5ec590499f6e6f99a2c635b05861a0b154ea4beaf5f923fdb0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/10 6:2 p.m.3 views

EUVD-2025-49275

Malicious code in stronglemurz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/10 6:2 p.m.1 views

EUVD-2025-49279

Malicious code in strongchipmunkz3n npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/10 6:2 p.m.2 views

MAL-2025-61393 Malicious code in strong_lemming_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24bdce26e5efffcb64409354c045372bee1f8662260f6684589d8a8afd30afc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/10 6:2 p.m.2 views

MAL-2025-61390 Malicious code in strong_chipmunk_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e0d4782dc0f87483db25cf9ced59f69249a072fa81b5d5436866515c5d38c3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/07 8:50 a.m.8 views

CVE-2025-11268

The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...

4.3CVSS6.7AI score0.00262EPSS
Exploits0References1
NVD
NVD
added 2025/11/06 9:15 a.m.7 views

CVE-2025-11268

The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...

4.3CVSS0.00262EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/06 8:26 a.m.2 views

CVE-2025-11268 Strong Testimonials <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution

The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...

4.3CVSS6.3AI score0.00262EPSS
Exploits0References2
CVE
CVE
added 2025/11/06 8:26 a.m.19 views

CVE-2025-11268

The CVE-2025-11268 entry for Strong Testimonials (WordPress) is confirmed by Wordfence as a vulnerability in all versions up to 3.2.16, enabling unauthenticated attackers to trigger arbitrary shortcodes when an administrator previews or publishes a crafted testimonial. The issue is caused by insu...

4.3CVSS6.3AI score0.00262EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/06 8:26 a.m.10 views

CVE-2025-11268 Strong Testimonials <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution

The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...

4.3CVSS0.00262EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/11/06 1:8 a.m.8 views

WordPress Strong Testimonials plugin <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution vulnerability

Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by Kishan Vyas in WordPress Plugin Strong Testimonials versions = 3.2.16...

4.3CVSS6.9AI score0.00262EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/06 12:0 a.m.6 views

PT-2025-45181

Name of the Vulnerable Software and Affected Versions Strong Testimonials plugin for WordPress versions prior to 3.2.17 Description The Strong Testimonials plugin for WordPress is susceptible to arbitrary shortcode execution. The software does not properly validate or sanitize user-submitted...

4.3CVSS7.2AI score0.00262EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.10 views

WordPress plugin Strong Testimonials 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.9AI score0.00262EPSS
Exploits0References2
Rows per page
Query Builder