EUVD-2014-4501

Malware in sbrugna...

Malicious code in webengage (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7b526ee0b000536b84421cac42f7eaa62010d08785c0d61238fe4c3afe8a445d Any computer that has this package installed or running should be considered...

MAL-2025-5479 Malicious code in webengage (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7b526ee0b000536b84421cac42f7eaa62010d08785c0d61238fe4c3afe8a445d Any computer that has this package installed or running should be considered...

WordPress WebEngage Plugin 'height' Parameter Cross Site Scripting Vulnerability

WordPress WebEngage Plugin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

WebEngage 2.0.0 - resize.php height Parameter XSS

The WebEngage Feedback, Survey and Notification WordPress plugin was affected by a resize.php height Parameter XSS security vulnerability...

WebEngage 2.0.0 - renderer.php Multiple Parameter Reflected XSS

The WebEngage Feedback, Survey and Notification WordPress plugin was affected by a renderer.php Multiple Parameter Reflected XSS security vulnerability...

WebEngage 2.0.0 - callback.php Multiple Parameter Reflected XSS

The WebEngage Feedback, Survey and Notification WordPress plugin was affected by a callback.php Multiple Parameter Reflected XSS security vulnerability...

CVE-2014-4574

Cross-site scripting XSS vulnerability in resize.php in the WebEngage plugin before 2.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the height parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in resize.php in the WebEngage plugin before 2.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the height parameter...

CVE-2014-4574

Cross-site scripting XSS vulnerability in resize.php in the WebEngage plugin before 2.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the height parameter...

CVE-2014-4574

The CVE-2014-4574 entry concerns the WordPress WebEngage plugin, where an XSS vulnerability exists in resize.php. The issue is triggered by the height parameter, affecting versions before 2.0.1. The root cause is a cross-site scripting flaw in the handling of this parameter, allowing injection of...

WordPress WebEngage Plugin <= 2.0.0 - XSS

Because of this vulnerability in resize.php, the attackers to inject arbitrary web script or HTML via the "height" parameter or renderer.php or callback.php. Solution Update the plugin...