8 matches found
EUVD-2024-50152
Malicious code in bioql PyPI...
CVE-2024-9837
The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode...
CVE-2024-9837
The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode...
CVE-2024-9837 AADMY – Add Auto Date Month Year Into Posts <= 2.0.1 - Unauthenticated Arbitrary Shortcode Execution
The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode...
WordPress AADMY plugin <= 2.0.1 - Unauthenticated Arbitrary Shortcode Execution vulnerability
Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by Francesco Carlucci in WordPress Plugin AADMY versions = 2.0.1...
PT-2024-39877 · WordPress · Aadmy – Add Auto Date Month Year Into Posts
Name of the Vulnerable Software and Affected Versions: The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress versions up to, and including, 2.0.1 Description: The issue is related to arbitrary shortcode execution due to the software allowing users to execute an action that does not...
WordPress AADMY Plugin <= 2.0.1 is vulnerable to Content Injection
Software AADMY Type Plugin Vulnerable versions = 2.0.1 Fixed in 2.0.2 OWASP Top 10 A3: Injection Classification Content Injection CVE CVE-2024-9837 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID e1df1286c7c4 Credits Francesco Carlucci Required privilege...
WordPress AADMY Plugin <= 1.1.4 is vulnerable to Cross Site Scripting (XSS)
Software AADMY Type Plugin Vulnerable versions = 1.1.4 Fixed in 1.1.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ceb9abf563c7 Credits Rafie Muhammad Patchstack Required privile...