18 matches found
EUVD-2024-34778
Malicious code in bioql PyPI...
CVE-2024-34417
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Toidicode.Com thanhtaivtt Viet Nam Affiliate allows Stored XSS.This issue affects Viet Nam Affiliate: from n/a through 1.0.0...
WordPress plugin Affiliate Tools Việt Nam 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...
WordPress Affiliate Tools Việt Nam plugin <= 0.3.17 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Affiliate Tools Việt Nam versions = 0.3.17...
Viet Nam Affiliate <= 1.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting
Description The Viet Nam Affiliate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2024-34417
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Toidicode.Com thanhtaivtt Viet Nam Affiliate allows Stored XSS.This issue affects Viet Nam Affiliate: from n/a through 1.0.0...
CVE-2024-34417
Technical details for CVE-2024-34417 are not provided in the connected documents. Public information appears limited to a general description of Stored XSS in Viet Nam Affiliate plugin versions up to 1.0.0. Monitor for updates.
CVE-2024-34417 WordPress Viet Nam Affiliate plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Toidicode.Com thanhtaivtt Viet Nam Affiliate allows Stored XSS.This issue affects Viet Nam Affiliate: from n/a through 1.0.0...
PT-2024-25869 · Unknown · Toidicode.Com
Name of the Vulnerable Software and Affected Versions: Toidicode.Com thanhtaivtt Viet Nam Affiliate versions through 1.0.0 Description: The issue affects the Viet Nam Affiliate, allowing for Stored XSS due to improper neutralization of input during web page generation. Recommendations: For versio...
WordPress Viet Nam Affiliate plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Sharanabasappa Patchstack Alliance in WordPress Plugin Viet Nam Affiliate versions = 1.0.0...
WordPress Viet Nam Affiliate Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software Viet Nam Affiliate Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34417 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9b4cdde6b69c Credits Sharanabasappa Required privilege...
WordPress PublishPress Capabilities Pro premium plugin <= 2.5.1 - Auth. PHP Objection Injection vulnerability
Auth. PHP Objection Injection vulnerability discovered by Nguyen Pham Viet Nam in WordPress PublishPress Capabilities Pro premium plugin versions = 2.5.1. Solution Update the WordPress PublishPress Capabilities Pro plugin to the latest available version at least...
WordPress PublishPress Capabilities plugin <= 2.5.1 - Auth. PHP Objection Injection vulnerability
Auth. PHP Objection Injection vulnerability discovered by Nguyen Pham Viet Nam in WordPress PublishPress Capabilities plugin versions = 2.5.1. Solution Update the WordPress PublishPress Capabilities plugin to the latest available version at least 2.5.2...
GPON G-93RG1 Cross Site Request Forgery / Code Execution
CSRF Demo Exploit -- document.auto.submit;...
GPON Home Router FTP G-93RG1 - Cross-Site Request Forgery / Command Execution
CSRF Demo Exploit -- document.auto.submit;...
GPON Home Router FTP G-93RG1 - CSRF Command Execution Vulnerability
Exploit for hardware platform in category web applications CSRF Demo Exploit -- document.auto.submit; 0day.today 2018-03-31...
WordPress Plugin SP Client Document Manager 2.4.1 - SQL Injection
Vulnerability title: Multi SQL Injection in SP Client Document Manager plugin CVE: N/A Vendor: http://smartypantsplugins.com Plugin: SP Client Document Manager Download link: https://wordpress.org/plugins/sp-client-document-manager/ Affected version: version 2.4.1 and previous version Google dork...
Facebook Game - Poker Texas Hold'em Boyaa Viet Nam Detected (deprecated)
Binary data 6439.prm...