47 matches found
CVE-2026-6477 PostgreSQL libpq lo_* functions let server superuser overwrite client stack memory
Use of inherently dangerous function PQfn..., resultisint=0, ... in PostgreSQL libpq loexport, loread, lolseek64, and lotell64 functions allows the server superuser to overwrite a client stack buffer with an arbitrarily-large response. Like gets, PQfn..., resultisint=0, ... stores arbitrary-lengt...
CVE-2023-25463
Cross-Site Request Forgery CSRF vulnerability in Gopi Ramasamy WP tell a friend popup form plugin = 7.1 versions...
CVE-2023-25465
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Gopi Ramasamy wp tell a friend popup form plugin = 7.1 versions...
EUVD-2005-0680
Malware in sbrugna...
EUVD-2023-29420
Malicious code in bioql PyPI...
EUVD-2025-10632
Malicious code in bioql PyPI...
MAL-2025-34669 Malicious code in tell-research-conversation (npm)
The package tell-research-conversation was found to contain malicious code...
Malicious code in tell-research-conversation (npm)
The package tell-research-conversation was found to contain malicious code...
CVE-2025-31404
Cross-Site Request Forgery CSRF vulnerability in Wladyslaw Madejczyk AF Tell a Friend af-tell-a-friend allows Stored XSS.This issue affects AF Tell a Friend: from n/a through = 1.4...
CVE-2025-31404
Cross-Site Request Forgery CSRF vulnerability in Wladyslaw Madejczyk AF Tell a Friend af-tell-a-friend allows Stored XSS.This issue affects AF Tell a Friend: from n/a through = 1.4...
CVE-2025-31404 WordPress AF Tell a Friend plugin <= 1.4 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Wladyslaw Madejczyk AF Tell a Friend allows Stored XSS. This issue affects AF Tell a Friend: from n/a through 1.4...
PT-2025-15754 · Unknown · Af Tell A Friend
Name of the Vulnerable Software and Affected Versions: AF Tell a Friend versions 1.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web application,...
WordPress plugin AF Tell a Friend 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...
CVE-2023-25463
Cross-Site Request Forgery CSRF vulnerability in Gopi Ramasamy WP tell a friend popup form plugin = 7.1 versions...
CVE-2023-25463
Cross-Site Request Forgery CSRF vulnerability in Gopi Ramasamy WP tell a friend popup form plugin = 7.1 versions...
CVE-2023-25463 WordPress wp tell a friend popup form Plugin <= 7.1 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Gopi Ramasamy WP tell a friend popup form plugin = 7.1 versions...
WordPress Plugin wp-tell-a-friend-popup-form Cross-Site Request Forgery Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
CVE-2023-25465
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Gopi Ramasamy wp tell a friend popup form plugin = 7.1 versions...
CVE-2023-25465
CVE-2023-25465 affects the WordPress plugin wp-tell-a-friend-popup-form (Gopi Ramasamy) for versions <= 7.1. It is an Authenticated (admin+) Stored Cross‑Site Scripting (XSS) vulnerability. Exploitation context and impact are described across multiple sources: Red Hat/NVD entries list an admin...
CVE-2023-25465 WordPress wp tell a friend popup form Plugin <= 7.1 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Gopi Ramasamy wp tell a friend popup form plugin = 7.1 versions...