Malicious code in twentynineteen (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 41e718fa7d54fba600dedc033d1d1c93b282fdae82403869bf77c53363acf842 The OpenSSF Package Analysis project identified 'twentynineteen' @ 2.5.1 npm as malicious. It is considered malicious because: - The package...

Debian DSA-5279-1 : wordpress - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5279 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The...

Loco Translate < 2.2.2 - Authenticated LFI

WordPress plugin Loco Translate version appears to have an Authenticated LFI Vulnerability under the 'Edit Template' Functionality. The following vulnerability can be exploited by any user with access to the plugin access can range from Admin to Subscriber WPScanTeam Note: Was not able to reprodu...

Loco Translate < 2.2.2 - Authenticated LFI

WordPress plugin Loco Translate version appears to have an Authenticated LFI Vulnerability under the 'Edit Template' Functionality. The following vulnerability can be exploited by any user with access to the plugin access can range from Admin to Subscriber WPScanTeam Note: Was not able to reprodu...