CVE-2025-62942 WordPress WP Mapbox GL JS Maps plugin <= 3.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tempranova WP Mapbox GL JS Maps wp-mapbox-gl-js allows Stored XSS.This issue affects WP Mapbox GL JS Maps: from n/a through = 3.0.1...

CVE-2025-62911 WordPress Rock Convert plugin <= 3.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rock Content Rock Convert rock-convert allows Stored XSS.This issue affects Rock Convert: from n/a through = 3.0.1...

CVE-2025-62911

CVE-2025-62911 is a stored XSS vulnerability in the WordPress Rock Convert plugin (rock-convert), caused by improper neutralization of input during web page generation. The issue affects Rock Convert versions from n/a up to and including 3.0.1. The CVSS base score is 5.4 (AV:N/AC:L/PR:L/UI:R/S:C/...

PT-2025-43818

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tempranova WP Mapbox GL JS Maps wp-mapbox-gl-js allows Stored XSS.This issue affects WP Mapbox GL JS Maps: from n/a through = 3.0.1...

CVE-2025-11875

The SpendeOnline.org plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'spendeonline' shortcode in all versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2025-11875 SpendeOnline.org <= 3.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The SpendeOnline.org plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'spendeonline' shortcode in all versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

WordPress Builderall Builder for WordPress plugin <= 3.0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Builderall Builder for WordPress versions = 3.0.1...

EUVD-2025-33790

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Facets allows Cross-Site Scripting XSS.This issue affects Facets: from 0.0.0 before 2.0.10, from 3.0.0 before 3.0.1...

CVE-2025-9549 Facets - Moderately critical - Information Disclosure - SA-CONTRIB-2025-099

Missing Authorization vulnerability in Drupal Facets allows Forceful Browsing.This issue affects Facets: from 0.0.0 before 2.0.10, from 3.0.0 before 3.0.1...

WordPress WP Mapbox GL JS Maps plugin <= 3.0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin WP Mapbox GL JS Maps versions = 3.0.1...

EUVD-2013-4862

Malware in sbrugna...

EUVD-2005-1482

Malware in sbrugna...

EUVD-2020-3029

Malware in sbrugna...

EUVD-2025-10836

Malicious code in bioql PyPI...

EUVD-2025-12018

Malicious code in bioql PyPI...

EUVD-2023-0036

Malicious code in bioql PyPI...

EUVD-2023-1768

Malicious code in bioql PyPI...

EUVD-2024-45956

Malicious code in bioql PyPI...

EUVD-2024-3139

Malicious code in bioql PyPI...

EUVD-2025-28324

Malicious code in bioql PyPI...