10 matches found
EUVD-2017-8259
Malware in sbrugna...
EUVD-2008-4909
Malware in sbrugna...
EUVD-2023-32435
Malicious code in bioql PyPI...
EUVD-2021-30034
Malicious code in bioql PyPI...
CVE-2024-5280
The wp-affiliate-platform WordPress plugin before 6.5.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make non-logged in users execute an XSS payload via a CSRF attack...
CVE-2022-29882
A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not handle uploaded files correctly. An unauthenticated attacker could take advantage of this situation to store an XSS attack, which could - when a legitimate user accesses the error logs - perform arbitrary...
CVE-2022-24926
Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.15-6 allows privileged attackers to trigger a XSS on a victim's devices...
Linux Distros Unpatched Vulnerability : CVE-2023-39318
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The html/template package does not properly handle HTML-like comment tokens, nor hashbang ! comment tokens, in contexts. This may cause the template parser to...
Linux Distros Unpatched Vulnerability : CVE-2017-7233
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 relies on user input in some cases to redirect the user to an on success URL. The security...
PT-2023-25148 · WordPress · Ftp Access
Name of the Vulnerable Software and Affected Versions: FTP Access WordPress plugin versions 1.0 and earlier Description: The issue concerns a lack of authorization and CSRF checks when updating settings in the plugin, along with missing sanitization and escaping. This allows any authenticated use...