WordPress Clearout Email Validator plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Clearout Email Validator versions = 3.2.0...

WordPress plugin Clearout Email Validator 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

WordPress plugin Saso Serial Codes Generator and Validator with WooCommerce Support 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

Malicious code in auth-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 76847b48ca1b5549990fb4ce13215fc4034a40d098eb03794a245e5ea28df8d7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2297 Malicious code in auth-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 76847b48ca1b5549990fb4ce13215fc4034a40d098eb03794a245e5ea28df8d7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in array-empty-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9923e27ee77980880cfc13a3c78c4903c58bed58f9257ac0407d57841fcc7853 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in empty-array-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 349e81874005a4e4ed11f5e452324e817f3fc61d4a22f5237445d562df83fb60 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in empty-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e4f29eb4e06a456c0243473ddb4cf4b5953ab107489b4a79b5f3ccbebf67ebcd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2307 Malicious code in empty-array-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 349e81874005a4e4ed11f5e452324e817f3fc61d4a22f5237445d562df83fb60 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2308 Malicious code in empty-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e4f29eb4e06a456c0243473ddb4cf4b5953ab107489b4a79b5f3ccbebf67ebcd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2296 Malicious code in array-empty-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9923e27ee77980880cfc13a3c78c4903c58bed58f9257ac0407d57841fcc7853 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in yoojae-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bc98fbe305ce2dc7d6ada4fca1d13920ebb82e43a8cf91af458cd37c509ed466 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2336 Malicious code in yoojae-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bc98fbe305ce2dc7d6ada4fca1d13920ebb82e43a8cf91af458cd37c509ed466 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in is-buffer-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec624113b772adb7a894fb1633bfeb1846f0b05bc072b04aabcb7cf0ffd36812 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2317 Malicious code in is-buffer-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec624113b772adb7a894fb1633bfeb1846f0b05bc072b04aabcb7cf0ffd36812 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Security Bulletin: Hibernate Hibernate Validator could allow a remote attacker to bypass security restriction which affects watsonx.data

Summary Hibernate Hibernate Validator could allow a remote attacker to bypass security restrictions, caused by a flaw in the message interpolation processor, which may impact watsonx.data. Vulnerability Details CVEID:CVE-2020-10693 DESCRIPTION: Hibernate Hibernate Validator could allow a remote...

Horcrux Double Sign Possibility

Horcrux Incident Disclosure: Possible Double-Sign Summary On March 6, 2025, a Horcrux user 01node experienced a double-signing incident on the Osmosis network, resulting in a 5% slash penalty approximately 75,000 OSMO or $20,000 USD. After thorough investigation, we have identified a race conditi...

GHSA-6WXF-7784-62FP Horcrux Double Sign Possibility

Horcrux Incident Disclosure: Possible Double-Sign Summary On March 6, 2025, a Horcrux user 01node experienced a double-signing incident on the Osmosis network, resulting in a 5% slash penalty approximately 75,000 OSMO or $20,000 USD. After thorough investigation, we have identified a race conditi...

Linux Distros Unpatched Vulnerability : CVE-2024-50343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - symfony/validator is a module for the Symphony PHP framework which provides tools to validate values. It is possible to trick a Validator configured with a...

Linux Distros Unpatched Vulnerability : CVE-2022-49433

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RDMA/hfi1: Prevent use of lock before it is initialized If there is a failure during probe of hfi1 before the sdmamaplock is initialized, the call to...