674 matches found
EUVD-2025-73471
Malicious code in strongravenz3n npm...
EUVD-2025-73472
Malicious code in strongpigrequirement npm...
EUVD-2025-73473
Malicious code in strongcentipedez3n npm...
MAL-2025-96818 Malicious code in strong_pig_requirement (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a56c44868c5c0fa99218f32d9f2b5c7d1fd71c5f5e422c92d35dea4a656a625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-51758
Malicious code in strong-yellow-bobolink npm...
Malicious code in strong-coffee-firefly (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54751dab2c07637bb633b47ccc5b4b783ab0cb6a100fba3ec7417861addf4b8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-51759
Malicious code in strong-coffee-firefly npm...
MAL-2025-70891 Malicious code in strong-yellow-bobolink (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4f82edad58dc5ec590499f6e6f99a2c635b05861a0b154ea4beaf5f923fdb0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-49275
Malicious code in stronglemurz3n npm...
EUVD-2025-49279
Malicious code in strongchipmunkz3n npm...
MAL-2025-61393 Malicious code in strong_lemming_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24bdce26e5efffcb64409354c045372bee1f8662260f6684589d8a8afd30afc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-61390 Malicious code in strong_chipmunk_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e0d4782dc0f87483db25cf9ced59f69249a072fa81b5d5436866515c5d38c3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-11268
The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...
CVE-2025-11268
The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...
CVE-2025-11268 Strong Testimonials <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution
The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...
CVE-2025-11268
The CVE-2025-11268 entry for Strong Testimonials (WordPress) is confirmed by Wordfence as a vulnerability in all versions up to 3.2.16, enabling unauthenticated attackers to trigger arbitrary shortcodes when an administrator previews or publishes a crafted testimonial. The issue is caused by insu...
CVE-2025-11268 Strong Testimonials <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution
The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.2.16. This is due to the software allowing users to submit a testimonial in which a value is not properly validated or sanitized prior to being passed to a doshortco...
WordPress Strong Testimonials plugin <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution vulnerability
Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by Kishan Vyas in WordPress Plugin Strong Testimonials versions = 3.2.16...
PT-2025-45181
Name of the Vulnerable Software and Affected Versions Strong Testimonials plugin for WordPress versions prior to 3.2.17 Description The Strong Testimonials plugin for WordPress is susceptible to arbitrary shortcode execution. The software does not properly validate or sanitize user-submitted...
WordPress plugin Strong Testimonials 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...