EUVD-2023-27814

Malicious code in bioql PyPI...

EUVD-2025-11323

Malicious code in bioql PyPI...

CVE-2023-23728

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Winwar Media WP Flipclock plugin = 1.7.4 versions...

CVE-2025-39540

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rhys Wynne WP Flipclock wp-flipclock allows DOM-Based XSS.This issue affects WP Flipclock: from n/a through = 1.9.1...

WordPress WP Flipclock plugin <= 1.9.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin WP Flipclock versions = 1.9.1...

CVE-2025-39540

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rhys Wynne WP Flipclock wp-flipclock allows DOM-Based XSS.This issue affects WP Flipclock: from n/a through = 1.9.1...

CVE-2025-39540

CVE-2025-39540 refers to a Cross-Site Scripting (DOM-based) vulnerability in the WordPress plugin WP Flipclock. Public records specify the issue affects WP Flipclock versions up to 1.9.x (1.9.1 cited in patches) and is caused by improper input neutralization during web page generation. Exploitati...

CVE-2025-39540 WordPress WP Flipclock plugin <= 1.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rhys Wynne WP Flipclock allows DOM-Based XSS. This issue affects WP Flipclock: from n/a through 1.9...

CVE-2023-23728

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Winwar Media WP Flipclock plugin = 1.7.4 versions...

CVE-2023-23728

CVE-2023-23728 affects WordPress WP Flipclock plugin up to version 1.7.4. The root cause is insufficient sanitization/escaping in parameters, enabling a stored XSS that can be triggered by users with Contributor privileges (and higher). Remediation: update to version 1.8 or apply vendor fixes. Ex...