44 matches found
EUVD-2024-1116
Malicious code in bioql PyPI...
MAL-2025-36937 Malicious code in timber-fn (npm)
The package timber-fn was found to contain malicious code...
Malicious code in timber-fn (npm)
The package timber-fn was found to contain malicious code...
MAL-2025-36939 Malicious code in timber-ui (npm)
The package timber-ui was found to contain malicious code...
Malicious code in timber-ui (npm)
The package timber-ui was found to contain malicious code...
Malicious code in timber-console (npm)
The package timber-console was found to contain malicious code...
Malicious code in timber-js (npm)
The package timber-js was found to contain malicious code...
MAL-2025-36936 Malicious code in timber-console (npm)
The package timber-console was found to contain malicious code...
MAL-2025-36938 Malicious code in timber-js (npm)
The package timber-js was found to contain malicious code...
WordPress Timber plugin <= 1.23.1 - Use of a Vulnerable Dependency vulnerability
Use of a Vulnerable Dependency vulnerability discovered by WordFence in WordPress Plugin Timber versions = 1.23.1...
CVE-2024-29800
Deserialization of Untrusted Data vulnerability in Timber Team & Contributors Timber.This issue affects Timber: from n/a through 1.23.0...
PT-2025-4626 · Unknown · Digitimber Cpanel Integration
Name of the Vulnerable Software and Affected Versions: DigiTimber cPanel Integration versions 1.4.6 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on the web...
CVE-2024-41787
creationtimestamp| type| source ---|---|--- 2025-01-10 13:51:05+00:00| seen| https://infosec.exchange/users/cR0w/statuses/113804382326937214 2025-01-10 14:05:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1132 2025-01-10 14:15:49+00:00| seen|...
CVE-2024-29800
Deserialization of Untrusted Data vulnerability in Timber Team & Contributors Timber.This issue affects Timber: from n/a through 1.23.0...
WordPress plugin Timber 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...
CVE-2024-29800 WordPress Timber plugin <= 1.23.0 - Deserialization of untrusted data vulnerability
Deserialization of Untrusted Data vulnerability in Timber Team & Contributors Timber.This issue affects Timber: from n/a through 1.23.0...
CVE-2024-29800
CVE-2024-29800 describes a PHAR deserialization vulnerability in Timber WordPress Timber plugin <= 1.23.0. The flaw arises from unvalidated inputs in the Timber run/toJpg.php path, allowing deserialization via phar:// and potentially remote code execution when attackers upload crafted files an...
CVE-2024-29800 WordPress Timber plugin <= 1.23.0 - Deserialization of untrusted data vulnerability
Deserialization of Untrusted Data vulnerability in Timber Team & Contributors Timber.This issue affects Timber: from n/a through 1.23.0...
WordPress Timber plugin <= 1.23.0 - Deserialization of untrusted data vulnerability
Deserialization of untrusted data vulnerability discovered by Trình Vũ / Sonicrrrr from VNPT-VCI Patchstack Alliance in WordPress Plugin Timber versions = 1.23.0...
WordPress Timber Plugin <= 1.23.0 is vulnerable to Deserialization of untrusted data
Software Timber Type Plugin Vulnerable versions = 1.23.0 Fixed in 1.23.1 OWASP Top 10 A3: Injection Classification Deserialization of untrusted data CVE CVE-2024-29800 Patch priority Low CVSS severity Low 8 Developer Claim ownership PSID efbf64c823fc Credits Trình Vũ Sonicrrrr from VNPT-VCI...