WordPress WP Recipe Maker plugin <= 10.2.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin WP Recipe Maker versions = 10.2.4...

CVE-2026-24357

Missing Authorization vulnerability in Brecht WP Recipe Maker wp-recipe-maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Recipe Maker: from n/a through = 10.2.4...

CVE-2026-24357

CVE-2026-24357 concerns the WordPress plugin WP Recipe Maker (wp-recipe-maker). The vulnerability is described as Missing Authorization caused by incorrectly configured access control, affecting the plugin for WP Recipe Maker versions from unspecified up to 10.2.4. Connected sources (Wordfence, P...

CVE-2026-24357

Missing Authorization vulnerability in Brecht WP Recipe Maker wp-recipe-maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Recipe Maker: from n/a through = 10.2.4...

CVE-2026-24357 WordPress WP Recipe Maker plugin <= 10.2.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Brecht WP Recipe Maker wp-recipe-maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Recipe Maker: from n/a through = 10.2.4...

CVE-2025-13417

The Plugin Organizer WordPress plugin before 10.2.4 does not sanitize and escape a parameter before using it in a SQL statement, allowing subscribers to perform SQL injection attacks...

CVE-2025-13417

The Plugin Organizer WordPress plugin before 10.2.4 does not sanitize and escape a parameter before using it in a SQL statement, allowing subscribers to perform SQL injection attacks...

CVE-2025-13417 Plugin Organizer < 10.2.4 - Subscriber+ SQLi

The Plugin Organizer WordPress plugin before 10.2.4 does not sanitize and escape a parameter before using it in a SQL statement, allowing subscribers to perform SQL injection attacks...

PT-2025-53696

Name of the Vulnerable Software and Affected Versions Plugin Organizer versions prior to 10.2.4 Description The Plugin Organizer WordPress plugin does not properly sanitize and escape a parameter before using it in a SQL statement. This allows subscribers to potentially execute SQL injection...

WordPress plugin Plugin Organizer 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

EUVD-2021-0909

Malware in sbrugna...

EUVD-2025-24921

Malicious code in bioql PyPI...

CVE-2025-55708 WordPress Quiz And Survey Master Plugin <= 10.2.4 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows SQL Injection.This issue affects Quiz And Survey Master: from n/a through = 10.2.4...

WordPress Quiz And Survey Master Plugin <= 10.2.4 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Quiz And Survey Master versions = 10.2.4...

PT-2025-33396 · Expresstech Systems · Quiz/Survey Master

Name of the Vulnerable Software and Affected Versions: ExpressTech Systems Quiz And Survey Master versions through 10.2.4 Description: The software contains a SQL Injection issue due to improper neutralization of special elements used in an SQL command. This allows for potential unauthorized...

CVE-2021-30757

This issue was addressed by enabling hardened runtime. This issue is fixed in iMovie 10.2.4. Entitlements and privacy permissions granted to this app may be used by a malicious app...

Palo Alto Networks PAN-OS 10.1.x < 10.1.9 / 10.2.x < 10.2.4 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 10.1.x prior to 10.1.9 or 10.2.x prior to 10.2.4. It is, therefore, affected by a vulnerability. An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator...

WordPress PowerPress Podcasting Plugin <= 10.2.3 is vulnerable to Cross Site Scripting (XSS)

Software PowerPress Podcasting Type Plugin Vulnerable versions = 10.2.3 Fixed in 10.2.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE N/A Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 51009255116e Credits N/A Required privilege...

Sql injection

Modern Campus Omni CMS formerly OU Campus 10.2.4 allows login-page SQL injection via a '" OR 1 = 1 -- - , ?php' substring...

PT-2022-25526 · Modern Campus · Modern Campus - Omni Cms

Name of the Vulnerable Software and Affected Versions: Modern Campus Omni CMS formerly OU Campus version 10.2.4 Description: The issue allows for SQL injection via a specific substring on the login page. This can be achieved by using a substring such as ' OR 1 = 1 -- - , ?php'. Recommendations: F...