Subscribe to Category <= 2.7.4 - SQL Injection

The Subscribe to Category contains a sqlinjection caused by improper neutralization of special elements used in an SQL command, letting attackers execute arbitrary SQL commands, exploit requires user interaction. id: CVE-2023-32590 info: name: Subscribe to Category = 2.7.4 - SQL Injection author:...

CVE-2026-32590

creationtimestamp| type| source ---|---|--- 2026-04-08 23:32:47+00:00| seen| Telegram/ZztUGlJiiCH0mZAuu7v3RF9KN1NNH1hWH4kt4dDN5ep1QI...

CVE-2026-32590

CVE-2026-32590 affects Red Hat Quay and relates to the handling of resumable container image layer uploads. The vulnerability stems from how intermediate upload data is stored in the database: if this data is tampered with, an attacker could trigger arbitrary code execution on the Quay server (re...

CVE-2021-32590

Multiple improper neutralization of special elements used in an SQL command vulnerabilities in FortiPortal 6.0.0 through 6.0.4, 5.3.0 through 5.3.5, 5.2.0 through 5.2.5, and 4.2.2 and earlier may allow an attacker with regular user's privileges to execute arbitrary commands on the underlying SQL...

CVE-2025-32590

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tzin111 Web2application web2application allows Reflected XSS.This issue affects Web2application: from n/a through = 6.1...

CVE-2025-32590

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tzin111 Web2application web2application allows Reflected XSS.This issue affects Web2application: from n/a through = 6.1...

CVE-2025-32590 WordPress Web2application Plugin <= 6.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tzin111 Web2application web2application allows Reflected XSS.This issue affects Web2application: from n/a through = 6.1...

CVE-2025-32590

CVE-2025-32590 refers to a Reflected XSS in Web2application plugin (WordPress) up to version 5.7/5.6 depending on listing. The description states improper neutralization of input during web page generation leading to cross-site scripting. Connected records confirm the vulnerability is tied to Web...

CVE-2025-32590 WordPress Web2application Plugin <= 6.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tzin111 Web2application web2application allows Reflected XSS.This issue affects Web2application: from n/a through = 6.1...

CVE-2024-32590

CVE-2024-32590 — Kattene WordPress plugin is affected in versions up to 1.7. The issue is an authenticated (Contributor+) Stored Cross-Site Scripting (XSS) due to insufficient input sanitization and output escaping of user-supplied attributes in Kattene. An attacker with contributor-level access ...

CVE-2024-32590 WordPress Kattene plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Webfood Kattene allows Stored XSS.This issue affects Kattene: from n/a through 1.7...

CVE-2024-32590 WordPress Kattene plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Webfood Kattene allows Stored XSS.This issue affects Kattene: from n/a through 1.7...

CVE-2023-32590

creationtimestamp| type| source ---|---|--- 2023-12-20 16:23:54+00:00| seen| https://t.me/ctinow/157118 2024-01-13 15:21:54+00:00| seen| https://t.me/ctinow/167852 2025-01-19 21:02:03+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lg4pubdvri2x 2025-02-24 15:46:41+00:00| seen...

CVE-2023-32590

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category.This issue affects Subscribe to Category: from n/a through 2.7.4...

CVE-2023-32590

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category.This issue affects Subscribe to Category: from n/a through 2.7.4...

CVE-2023-32590 WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category.This issue affects Subscribe to Category: from n/a through 2.7.4...

CVE-2023-32590

CVE-2023-32590 affects WordPress Subscribe to Category plugin versions

WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection

Software Subscribe to Category Type Plugin Vulnerable versions = 2.7.4 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-32590 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 2968f51bb060 Credits Mika Required privilege Unauthenticated...

CVE-2022-32590

creationtimestamp| type| source ---|---|--- 2022-10-08 00:17:48+00:00| seen| https://t.me/cibsecurity/51038...

CVE-2022-32590

In wlan, there is a possible use after free due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07299425; Issue ID: ALPS07299425...