Lucene search
K

55 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-10112

Malicious code in bioql PyPI...

4.9CVSS8.7AI score0.00353EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-10110

Malicious code in bioql PyPI...

4.9CVSS6.3AI score0.00359EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-8329

Malicious code in bioql PyPI...

4.3CVSS9AI score0.00197EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:49 a.m.9 views

CVE-2024-10480

The 3DPrint Lite WordPress plugin before 2.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

4.3CVSS6.7AI score0.00193EPSS
Exploits2References1
OSV
OSV
added 2025/04/08 7:15 a.m.5 views

CVE-2025-3430

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'printertext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS5.8AI score0.00359EPSS
Exploits0References2
OSV
OSV
added 2025/04/08 7:15 a.m.4 views

CVE-2025-3428

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'coatingtext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS7.3AI score0.00359EPSS
Exploits0References2
NVD
NVD
added 2025/04/08 7:15 a.m.4 views

CVE-2025-3427

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'infilltext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS0.00353EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/08 7:1 a.m.5 views

CVE-2025-3428 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'coating_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'coatingtext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS7.8AI score0.00359EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/08 7:1 a.m.20 views

CVE-2025-3428 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'coating_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'coatingtext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS0.00359EPSS
Exploits0References2
CVE
CVE
added 2025/04/08 7:1 a.m.73 views

CVE-2025-3430

CVE-2025-3430 affects the 3DPrint Lite WordPress plugin. The vulnerability is an SQL Injection in the printer_text parameter in all versions up to 2.1.3.6 caused by insufficient escaping and lack of proper query preparation. Impact: unauthenticated attackers can inject SQL to extract sensitive da...

4.9CVSS7.8AI score0.00359EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/08 7:1 a.m.5 views

CVE-2025-3430 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'printer_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'printertext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS7.8AI score0.00359EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/08 7:1 a.m.18 views

CVE-2025-3430 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'printer_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'printertext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS0.00359EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/08 7:1 a.m.5 views

CVE-2025-3429 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'material_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'materialtext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS7.8AI score0.00359EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/08 7:1 a.m.5 views

CVE-2025-3427 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'infill_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'infilltext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS7.8AI score0.00353EPSS
Exploits0References2
CVE
CVE
added 2025/04/08 7:1 a.m.66 views

CVE-2025-3427

The CVE CVE-2025-3427 affects the WordPress plugin 3DPrint Lite (

4.9CVSS7.8AI score0.00353EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/04/08 7:1 a.m.19 views

CVE-2025-3427 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'infill_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'infilltext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS0.00353EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/08 7:1 a.m.18 views

CVE-2025-3429 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'material_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'materialtext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

4.9CVSS0.00359EPSS
Exploits0References2
CVE
CVE
added 2025/04/08 7:1 a.m.68 views

CVE-2025-3429

CVE-2025-3429 affects the WordPress plugin 3DPrint Lite (versions up to 2.1.3.6). The vulnerability is an authenticated (Admin+) SQL Injection via the material_text parameter due to insufficient escaping in the query, enabling an attacker with admin privileges to append additional SQL statements ...

4.9CVSS7.8AI score0.00359EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.4 views

PT-2025-15380 · WordPress · 3Dprint Lite

Name of the Vulnerable Software and Affected Versions: 3DPrint Lite plugin for WordPress versions up to, and including, 2.1.3.6 Description: The issue arises from insufficient escaping on the user-supplied infill text parameter and lack of sufficient preparation on the existing SQL query, making ...

4.9CVSS9.7AI score0.00353EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.11 views

PT-2025-15381

Name of the Vulnerable Software and Affected Versions: 3DPrint Lite plugin for WordPress versions up to, and including, 2.1.3.6 Description: The issue allows unauthenticated attackers to perform SQL Injection via the coating text parameter due to insufficient escaping of user-supplied input and...

4.9CVSS7.2AI score0.00359EPSS
Exploits0References10
Rows per page
Query Builder