38 matches found
EUVD-2014-6116
Malware in sbrugna...
EUVD-2022-51961
Malicious code in bioql PyPI...
EUVD-2022-51616
Malicious code in bioql PyPI...
EUVD-2021-34098
Malicious code in bioql PyPI...
EUVD-2024-52560
Malicious code in bioql PyPI...
CVE-2022-4631
A vulnerability, which was classified as problematic, was found in WP-Ban. Affected is an unknown function of the file ban-options.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The name of the patch is 22b925449c84faa9b7496abe4f8f5661cb5eb3bf. ...
CVE-2022-4260
The WP-Ban WordPress plugin before 1.69.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-54440
Cross-Site Request Forgery CSRF vulnerability in blueskyy WP-Ban-User wp-ban-user allows Stored XSS.This issue affects WP-Ban-User: from n/a through = 1.0...
CVE-2024-54440
Cross-Site Request Forgery CSRF vulnerability in blueskyy WP-Ban-User wp-ban-user allows Stored XSS.This issue affects WP-Ban-User: from n/a through = 1.0...
CVE-2024-54440
CVE-2024-54440 is a CSRF to Stored XSS vulnerability in the WP-Ban-User WordPress plugin (
CVE-2024-54440 WordPress WP-Ban-User plugin <= 1.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in blueskyy WP-Ban-User wp-ban-user allows Stored XSS.This issue affects WP-Ban-User: from n/a through = 1.0...
CVE-2024-54440 WordPress WP-Ban-User plugin <= 1.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in blueskyy WP-Ban-User allows Stored XSS.This issue affects WP-Ban-User: from n/a through 1.0...
PT-2024-36331 · Bluesky · Blueskyy Wp-Ban-User
Name of the Vulnerable Software and Affected Versions: blueskyy WP-Ban-User versions 1.0 and earlier Description: A Cross-Site Request Forgery CSRF issue in blueskyy WP-Ban-User allows Stored XSS. This means an attacker can perform actions on behalf of a user without their knowledge, potentially...
The vulnerability of the WP-Ban plugin of the WordPress content management system allows a hacker to execute XSS attacks.
The vulnerability of the WP-Ban plugin of the WordPress content management system is related to the lack of measures taken to protect the website’s structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...
CVE-2022-4260
The WP-Ban WordPress plugin before 1.69.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
Cross site scripting
The WP-Ban WordPress plugin before 1.69.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2022-4260 WP-Ban < 1.69.1 - Admin+ Stored XSS
The WP-Ban WordPress plugin before 1.69.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2022-4260
CVE-2022-4260 affects the WordPress WP-Ban plugin prior to 1.69.1. Affected component: plugin settings handling, where input is not fully sanitized/escaped. Root cause: stored XSS could be triggered by high-privilege users (e.g., admins), even when unfiltered_html is disallowed (e.g., multisite)....
WordPress plugin WP-Ban 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2022-4631
A vulnerability, which was classified as problematic, was found in WP-Ban. Affected is an unknown function of the file ban-options.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The name of the patch is 22b925449c84faa9b7496abe4f8f5661cb5eb3bf. ...