11 matches found
CVE-2025-1093
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generateimage function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which m...
EUVD-2025-15129
Malicious code in bioql PyPI...
CVE-2025-1093
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generateimage function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which m...
CVE-2025-1093 AIHub <= 1.3.7 - Unauthenticated Arbitrary File Upload in generate_image
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generateimage function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which m...
CVE-2025-1093
CVE-2025-1093 affects the AIHub WordPress Theme (AI Hub - Startup & Technology WordPress Theme). Unauthenticated arbitrary file upload is possible due to missing file-type validation in the generate_image function in all versions up to 1.3.7, potentially enabling remote code execution. Red Hat co...
CVE-2025-1093 AIHub <= 1.3.7 - Unauthenticated Arbitrary File Upload in generate_image
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generateimage function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which m...
WordPress plugin AIHub 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...
PT-2025-17353 · WordPress · Aihub
Name of the Vulnerable Software and Affected Versions: AIHub theme for WordPress versions up to, and including, 1.3.7 Description: The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generate image function. This makes it possible for...
@convergence/jointjs-utils (=0.4.0), aihub (>=1.0.1 <=1.0.2) +7 more potentially affected by CVE-2020-28479 via jointjs (>=3.1.0 <=3.2.0)
jointjs NPM version =3.1.0, =1.0.1, =1.0.6, =1.0.1, =1.0.1, =0.9.0, =0.10.1 - ublatt =1.2.0 - vue-erd =0.1.1 - vue-test-demo-one =0.1.0 Source cves: CVE-2020-28479 Source advisory: SNYK:JS-JOINTJS-1062038...
aihub-things (=0.5.0) potentially affected by CVE-2018-12680 via coapthon (=4.0.2)
coapthon PYPI version =4.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on coapthon and may be impacted: - aihub-things =0.5.0 Source cves: CVE-2018-12680 Source advisory: OSV:GHSA-5XC6-FPC7-4QVG...
aihub-things (=0.5.0) potentially affected by CVE-2018-12680 via coapthon (=4.0.2)
coapthon PYPI version =4.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on coapthon and may be impacted: - aihub-things =0.5.0 Source cves: CVE-2018-12680 Source advisory: OSV:PYSEC-2019-165...