EUVD-2023-35549

Malicious code in bioql PyPI...

CVE-2023-31234

Missing Authorization vulnerability in Tilda Publishing.This issue affects Tilda Publishing: from n/a through 0.3.23...

MAL-2024-7722 Malicious code in tilda-date-picker (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b98b7d3c762a3af730da420104e9016e9ca64e0313f7195afe1a8b29be029275 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in tilda-date-picker (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b98b7d3c762a3af730da420104e9016e9ca64e0313f7195afe1a8b29be029275 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-31234

Missing Authorization vulnerability in Tilda Publishing.This issue affects Tilda Publishing: from n/a through 0.3.23...

CVE-2023-31234 WordPress Tilda Publishing plugin <= 0.3.23 - Broken Access Control vulnerability

Missing Authorization vulnerability in Tilda Publishing.This issue affects Tilda Publishing: from n/a through 0.3.23...

CVE-2023-31234 WordPress Tilda Publishing plugin <= 0.3.23 - Broken Access Control vulnerability

Missing Authorization vulnerability in Tilda Publishing.This issue affects Tilda Publishing: from n/a through 0.3.23...

PT-2024-12264 · Unknown · Tilda Publishing

Name of the Vulnerable Software and Affected Versions: Tilda Publishing versions 0.3.23 and earlier Description: The issue is related to a Missing Authorization vulnerability. Recommendations: For versions 0.3.23 and earlier, at the moment, there is no information about a newer version that...

WordPress plugin Tilda Publishing 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

Tilda Publishing <= 0.3.21 - Missing Authorization

Description The Tilda Publishing plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to missing capability checks on several functions hooked via AJAX actions such as 'ajaxexportfile,' 'ajaxsync,' 'ajaxgetkeys,' 'ajaxswitcherstatus,' and more in versions ...

WordPress Tilda Publishing Plugin <= 0.3.23 is vulnerable to Broken Access Control

Software Tilda Publishing Type Plugin Vulnerable versions = 0.3.23 Fixed in 0.3.24 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-31234 Patch priority Medium CVSS severity Medium 6.3 Developer Claim ownership PSID f643ff3b43ab Credits spacecroupier Requir...

Mail.ru: Subdomain takeover on "info-edcrunch.skillfactory.ru"

Domain, site, application -- http://info-edcrunch.skillfactory.ru/ Here there is a skillfactory domain info-edcrunch.skillfactory.ru which is pointing towards tilda pages so this domain can be taken over can can be used to do any type of attacks mostly i can make a fake login page on your behalf...

Mail.ru: [performancemarketing.geekbrains.ru] Tilda Subdomain Takeover

Unused subdomain of geekbrains.ru was delegated to tilda.cc and unclaimed...

Takeover v0.2 - Sub-Domain TakeOver Vulnerability Scanner

Sub-domain takeover vulnerability occur when a sub-domain subdomain.example.com is pointing to a service e.g: GitHub , AWS/S3 ,.. that has been removed or deleted. This allows an attacker to set up a page on the service that was being used and point their page to that sub-domain. For example, if...