30 matches found
EUVD-2025-15496
Malicious code in bioql PyPI...
EUVD-2024-31407
Malicious code in bioql PyPI...
EUVD-2024-42408
Malicious code in bioql PyPI...
EUVD-2024-22459
Malicious code in bioql PyPI...
CVE-2024-33695
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeNcode Fan Page Widget by ThemeNcode allows Stored XSS.This issue affects Fan Page Widget by ThemeNcode: from n/a through 2.0...
CVE-2024-25097
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeNcode LLC TNC PDF viewer allows Stored XSS.This issue affects TNC PDF viewer: from n/a through 2.8.0...
CVE-2024-47372
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeNcode LLC TNC PDF viewer allows Stored XSS.This issue affects TNC PDF viewer: from n/a through 3.1.0...
CVE-2024-51841
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Abdul Awal Uzzal File Select Control For Elementor file-select-control-for-elementor allows DOM-Based XSS.This issue affects File Select Control For Elementor: from n/a through = 1.3...
CVE-2025-39509
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeNcode TNC FlipBook pdf-viewer-for-wordpress allows Stored XSS.This issue affects TNC FlipBook: from n/a through = 12.1.0...
CVE-2025-39509
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeNcode TNC FlipBook allows Stored XSS. This issue affects TNC FlipBook: from n/a through 12.1.0...
CVE-2025-39509 WordPress TNC FlipBook plugin <= 12.1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeNcode TNC FlipBook pdf-viewer-for-wordpress allows Stored XSS.This issue affects TNC FlipBook: from n/a through = 12.1.0...
CVE-2025-39509
The CVE-2025-39509 entry concerns ThemeNcode TNC FlipBook for WordPress (TNC FlipBook) with stored XSS in the web page generation input handling. Affected versions are up to and including 12.1.0 (and earlier). The root cause is improper input neutralization during page generation, enabling stored...
CVE-2024-51841
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Abdul Awal Uzzal File Select Control For Elementor file-select-control-for-elementor allows DOM-Based XSS.This issue affects File Select Control For Elementor: from n/a through = 1.3...
CVE-2024-51841
CVE-2024-51841 is a DOM-based XSS in the ThemeNcode File Select Control For Elementor. Root cause: improper input neutralization during web page generation. Affected: File Select Control For Elementor versions
CVE-2024-47372
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeNcode LLC TNC PDF viewer allows Stored XSS.This issue affects TNC PDF viewer: from n/a through 3.1.0...
CVE-2024-47372
CVE-2024-47372 : Stored XSS in the TNC PDF viewer (ThemeNcode) due to improper input neutralization during web page generation. Affected: TNC PDF viewer versions ≤ 3.1.0. Impact per Patchstack CVE data: low severity (CVSS 5.9) with potential stored cross-site scripting. Mitigation: update to vers...
CVE-2024-47372 WordPress TNC PDF viewer plugin <= 3.1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeNcode LLC TNC PDF viewer allows Stored XSS.This issue affects TNC PDF viewer: from n/a through 3.1.0...
Fan Page Widget by ThemeNcode < 2.1 - Admin+ Stored XSS
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-33695
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeNcode Fan Page Widget by ThemeNcode allows Stored XSS.This issue affects Fan Page Widget by ThemeNcode: from n/a through 2.0...
CVE-2024-33695 WordPress Fan Page Widget by ThemeNcode plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeNcode Fan Page Widget by ThemeNcode allows Stored XSS.This issue affects Fan Page Widget by ThemeNcode: from n/a through 2.0...