Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-43304

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.0044EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:11 a.m.5 views

CVE-2024-49235

Insertion of Sensitive Information Into Sent Data vulnerability in videowhisper Contact Forms, Live Support, CRM, Video Messages live-support-tickets allows Retrieve Embedded Sensitive Data.This issue affects Contact Forms, Live Support, CRM, Video Messages: from n/a through = 1.10.2...

7.5CVSS5.9AI score0.0044EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/17 5:24 p.m.37 views

CVE-2024-49235 WordPress Contact Forms, Live Support, CRM, Video Messages plugin <= 1.10.2 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in videowhisper Contact Forms, Live Support, CRM, Video Messages live-support-tickets allows Retrieve Embedded Sensitive Data.This issue affects Contact Forms, Live Support, CRM, Video Messages: from n/a through = 1.10.2...

7.5CVSS0.0044EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/17 12:0 a.m.4 views

PT-2024-33372 · Videowhisper.Com · Videowhisper.Com Contact Forms +3

Name of the Vulnerable Software and Affected Versions: VideoWhisper.Com Contact Forms, Live Support, CRM, Video Messages versions 1.10.2 and earlier Description: The issue allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. This affects...

7.5CVSS6.7AI score0.0044EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/10/14 11:30 a.m.5 views

WordPress Contact Forms, Live Support, CRM, Video Messages plugin <= 1.10.2 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Contact Forms, Live Support, CRM, Video Messages versions = 1.10.2...

7.5CVSS7AI score0.0044EPSS
Exploits0Affected Software1
OSV
OSV
added 2023/07/10 7:8 p.m.53 views

GHSA-MRR8-V49W-3333 sweetalert2 contains potentially undesirable behavior

sweetalert2 versions from 11.6.14 to before 11.22.4 have potentially undesirable behavior. The package outputs audio and/or video messages that do not pertain to the functionality of the package when run on specific tlds. This functionality is documented on the project's readme...

5.9AI score
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/07/10 12:0 a.m.8 views

PT-2023-33044 · Unknown · Sweetalert2

Name of the Vulnerable Software and Affected Versions: sweetalert2 versions 11.6.14 and above Description: The sweetalert2 package exhibits potentially undesirable behavior by outputting audio and/or video messages unrelated to its functionality when run on specific top-level domains TLDs. This...

7.1AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/11/23 3:49 p.m.91 views

sweetalert2 v8.19.1 and above contains hidden functionality

sweetalert2 versions 8.19.1 and up until 9.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions below 8.19.1. Workaround Users who a...

7AI score
Exploits0References4Affected Software1
OSV
OSV
added 2022/11/23 3:39 p.m.8 views

GHSA-457R-CQC8-9VJ9 sweetalert2 v10.16.10 and above contains hidden functionality

sweetalert2 versions 10.16.10 and up until 11.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 10.0.0 - 10.16.9. Workaround Use ...

5.9AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/11/23 3:39 p.m.40 views

sweetalert2 v10.16.10 and above contains hidden functionality

sweetalert2 versions 10.16.10 and up until 11.0.0 are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 10.0.0 - 10.16.9. Workaround Use ...

3.5AI score
Exploits0References3Affected Software1
OSV
OSV
added 2022/11/23 3:26 p.m.1 views

GHSA-QQ6H-5G6J-Q3CM sweetalert2 v11.4.9 and above contains hidden functionality

sweetalert2 versions 11.4.9 and above are vulnerable to hidden functionality that was introduced by the maintainer. The package outputs audio and/or video messages that do not pertain to the functionality of the package and is not included in versions 11.0.0 - 11.4.8. Workaround Use a version...

5.9AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/23 12:0 a.m.5 views

PT-2022-28188 · Unknown · Sweetalert2

Name of the Vulnerable Software and Affected Versions: sweetalert2 versions 10.16.10 through 11.0.0 Description: The issue concerns hidden functionality introduced by the maintainer, causing the package to output audio and/or video messages unrelated to its intended functionality. Recommendations...

7.2AI score
Exploits0References4
CNNVD
CNNVD
added 2021/08/12 12:0 a.m.4 views

AikCms跨站请求伪造漏洞

AikCms AikCms is a content management system CMS based on PHP and MySQL. AikCms has a security vulnerability that can be exploited by attackers to delete video messages...

3.5CVSS5.2AI score0.00291EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/08/12 12:0 a.m.6 views

AikCms 跨站请求伪造漏洞

AikCms AikCms is a content management system CMS based on PHP and MySQL. A security vulnerability exists in AikCms version v2.0.0, which can be exploited by attackers to delete video messages...

3.5CVSS5.3AI score0.00288EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2021/02/12 10:18 a.m.88 views

Secret Chat in Telegram Left Self-Destructing Media Files On Devices

Popular messaging app Telegram fixed a privacy-defeating bug in its macOS app that made it possible to access self-destructing audio and video messages long after they disappeared from secret chats. The vulnerability was discovered by security researcher Dhiraj Mishra in version 7.3 of the app, w...

0.2AI score
Exploits0
Rows per page
Query Builder