27 matches found
EUVD-2021-23427
Malware in sbrugna...
EUVD-2023-28435
Malicious code in bioql PyPI...
EUVD-2023-28468
Malicious code in bioql PyPI...
EUVD-2023-51359
Malicious code in bioql PyPI...
CVE-2023-47227
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Social Feed | All social media in one place plugin = 1.5.4.6 versions...
CVE-2023-24412
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Image Social Feed plugin = 1.7.6 versions...
CVE-2023-24379
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Web-Settler Landing Page Builder – Free Landing Page Templates allows Path Traversal.This issue affects Landing Page Builder – Free Landing Page Templates: from n/a through 3.1.9.9...
CVE-2023-24379
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Web-Settler Landing Page Builder – Free Landing Page Templates allows Path Traversal.This issue affects Landing Page Builder – Free Landing Page Templates: from n/a through 3.1.9.9...
CVE-2023-24379
CVE-2023-24379: Path traversal (Local File Inclusion) in WordPress plugin Landing Page Builder – Free Landing Page Templates (Web-Settler) up to version 3.1.9.9. Root cause is improper pathname limitation, enabling retrieval of restricted files via crafted input. Affected product/version details ...
CVE-2023-24379 WordPress Landing Page Builder – Free Landing Page Templates plugin <= 3.1.9.9 - Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Web-Settler Landing Page Builder – Free Landing Page Templates allows Path Traversal.This issue affects Landing Page Builder – Free Landing Page Templates: from n/a through 3.1.9.9...
CVE-2023-47227
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Social Feed | All social media in one place plugin = 1.5.4.6 versions...
CVE-2023-47227
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Social Feed | All social media in one place plugin = 1.5.4.6 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Social Feed | All social media in one place plugin = 1.5.4.6 versions...
CVE-2023-47227 WordPress Social Feed | All social media in one place Plugin <= 1.5.4.6 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Social Feed | All social media in one place plugin = 1.5.4.6 versions...
CVE-2023-47227 WordPress Social Feed | All social media in one place Plugin <= 1.5.4.6 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Social Feed | All social media in one place plugin = 1.5.4.6 versions...
CVE-2023-47227
The CVE-2023-47227 entry corresponds to an authenticated Stored XSS in the WordPress plugin “Social Feed | All social media in one place” (Web-Settler Social Feed)
PT-2023-30373 · Unknown · Web-Settler Social Feed
Name of the Vulnerable Software and Affected Versions: Web-Settler Social Feed | All social media in one place plugin versions 1.5.4.6 and earlier Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with admin+ privilege...
CVE-2023-24412
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Image Social Feed plugin = 1.7.6 versions...
CVE-2023-24412
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Image Social Feed plugin = 1.7.6 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Web-Settler Image Social Feed plugin = 1.7.6 versions...