10 matches found
EUVD-2022-40040
Malicious code in bioql PyPI...
EUVD-2022-39009
Malicious code in bioql PyPI...
CVE-2022-37407
Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...
Cross site scripting
Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...
CVE-2022-37407
The CVE-2022-37407 entry concerns WPChill Gallery PhotoBlocks plugin for WordPress (versions prior to 1.2.7). The root cause is insufficient sanitisation/escaping of parameters, enabling Multiple Authenticated Stored Cross-Site Scripting (XSS) by low-privileged users. Impact is defined as authent...
CVE-2022-36292
Cross-Site Request Forgery CSRF vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...
CVE-2022-36292
Cross-Site Request Forgery CSRF vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...
CVE-2022-36292
WPChill Gallery PhotoBlocks plugin for WordPress is affected by Cross-Site Request Forgery (CSRF) in versions ≤ 1.2.6. The vulnerability stems from insufficient CSRF checks, potentially allowing authenticated users to perform unwanted actions. Public references from CVE-2022-36292 indicate the im...
PT-2022-23293 · Wpchill · Wpchill Gallery Photoblocks
Name of the Vulnerable Software and Affected Versions: WPChill Gallery PhotoBlocks plugin versions 1.2.6 and earlier Description: The issue is related to Cross-Site Request Forgery CSRF vulnerabilities. This means an attacker could potentially trick a user into performing unintended actions on a...