370 matches found
CVE-2025-64241
Missing Authorization vulnerability in Imtiaz Rayhan WP Coupons and Deals wp-coupons-and-deals allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Coupons and Deals: from n/a through = 3.2.4...
CVE-2025-64241
CVE-2025-64241 is a Missing Authorization vulnerability in the WP Coupons and Deals plugin for WordPress, affecting versions up to 3.2.4. The issue stems from incorrectly configured access control, enabling unauthorized actions. CVSS v3.1 base score is 4.3 (Medium). Remediation: update the plugin...
PT-2025-51389
Name of the Vulnerable Software and Affected Versions WP Coupons and Deals versions through 3.2.4 Description The software contains a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue impacts the 'wp-coupons-and-deals'...
WordPress plugin WP Coupons and Deals 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin... A security...
WordPress WP Coupons and Deals plugin <= 3.2.4 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin WP Coupons and Deals versions = 3.2.4...
oci-helper 路径遍历漏洞
oci-helper is a visual Oracle Cloud helper by Yohann Personal Developer. A path traversal vulnerability exists in oci-helper 3.2.4 and earlier versions, which stems from a misbehavior with the parameter File in the file src/main/java/com/yohann/ocihelper/service/impl/OciServiceImpl.java, which...
PT-2025-48698
A weakness has been identified in Yohann0617 oci-helper up to 3.2.4. This issue affects the function addCfg of the file src/main/java/com/yohann/ocihelper/service/impl/OciServiceImpl.java of the component OCI Configuration Upload. Executing manipulation of the argument File can lead to path...
sfx (=0.1.0) potentially affected by CVE-2025-64182 via openexr (=3.2.4)
openexr PYPI version =3.2.4 is affected by a known vulnerability. The following packages have a transitive dependency on openexr and may be impacted: - sfx =0.1.0 Source cves: CVE-2025-64182 Source advisory: SNYK:PYTHON-OPENEXR-13876683...
CVE-2025-11823
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonexisttext' parameter in the 'wishsuitebutton' shortcode in all versions up to, and including, 3.2.4 due to insufficient...
CVE-2025-11823 ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution <= 3.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonexisttext' parameter in the 'wishsuitebutton' shortcode in all versions up to, and including, 3.2.4 due to insufficient...
CVE-2025-11823 ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution <= 3.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonexisttext' parameter in the 'wishsuitebutton' shortcode in all versions up to, and including, 3.2.4 due to insufficient...
EUVD-2009-0457
Malware in sbrugna...
EUVD-2014-1923
Malware in sbrugna...
EUVD-2018-8456
Malware in sbrugna...
EUVD-2020-7459
Malware in sbrugna...
EUVD-2018-11285
Malware in sbrugna...
EUVD-2018-11195
Malware in sbrugna...
EUVD-2025-28791
Malicious code in bioql PyPI...
EUVD-2022-2918
Malicious code in bioql PyPI...
EUVD-2025-3764
Malicious code in bioql PyPI...