For providers | HunCERT group

28 Mar 2025

Riasztás

NA - CVE-2025-2868 - Reflected Cross-Site Scripting (XSS)...

Reflected Cross-Site Scripting (XSS) vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by...

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-2869 - Reflected Cross-Site Scripting (XSS)...

Reflected Cross-Site Scripting (XSS) vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by...

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-2870 - Reflected Cross-Site Scripting (XSS)...

Reflected Cross-Site Scripting (XSS) vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by...

security-database.com

28 Mar 2025

Riasztás

High - CVE-2025-2815 - The Administrator Z plugin for WordPress is...

The Administrator Z plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the adminz_import_backup()...

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-31432 - Improper Control of Filename for...

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Chop Chop Pop-Up Chop Chop allows PHP Local File Inclusion. This...

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-31433 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Miguel Sirvent Magic Embeds allows Stored XSS. This issue affects Magic Embeds: from...

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-31434 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms allows Stored XSS. This issue...

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-31435 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Efficient Scripts Microblog Poster allows Stored XSS. This issue affects Microblog Poster: from n/a through 2.1.6.

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-31437 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in David Miller WP-OGP allows Stored XSS. This issue affects WP-OGP: from n/a through...

security-database.com

28 Mar 2025

Riasztás

NA - CVE-2025-31438 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Benoit De Boeck WP Supersized allows Cross Site Request Forgery. This issue affects WP Supersized: from n/a through 3.1.6.

security-database.com

Phone:	+36 1 279 6222 9am to 4pm
E-mail:	@email
Address:	H-1111 Budapest, Kende u. 13-17.