34 matches found
EUVD-2024-35399
Malicious code in bioql PyPI...
EUVD-2022-39013
Malicious code in bioql PyPI...
EUVD-2025-11335
Malicious code in bioql PyPI...
EUVD-2024-30595
Malicious code in bioql PyPI...
CVE-2025-39513
Missing Authorization vulnerability in ActiveDEMAND Online Agency Marketing Automation ActiveDEMAND activedemand allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ActiveDEMAND: from n/a through = 0.2.46...
CVE-2025-39513
Missing Authorization vulnerability in ActiveDEMAND Online Agency Marketing Automation ActiveDEMAND activedemand allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ActiveDEMAND: from n/a through = 0.2.46...
CVE-2025-39513 WordPress ActiveDEMAND plugin <= 0.2.46 - Broken Access Control vulnerability
Missing Authorization vulnerability in ActiveDEMAND Online Agency Marketing Automation ActiveDEMAND activedemand allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ActiveDEMAND: from n/a through = 0.2.46...
CVE-2025-39513
CVE-2025-39513 – ActiveDEMAND WordPress plugin : The connected docs identify a Missing Authorization / Broken Access Control vulnerability in the ActiveDEMAND WordPress plugin, affecting versions from n/a up to and including 0.2.46. The root cause is failure to constrain access to certain functio...
CVE-2025-39513 WordPress ActiveDEMAND <= 0.2.46 - Broken Access Control Vulnerability
Missing Authorization vulnerability in ActiveDEMAND Online Agency Marketing Automation ActiveDEMAND allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects ActiveDEMAND: from n/a through 0.2.46...
WordPress plugin ActiveDEMAND 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
CVE-2024-32809
Unrestricted Upload of File with Dangerous Type vulnerability in JumpDEMAND Inc. ActiveDEMAND allows Using Malicious Files.This issue affects ActiveDEMAND: from n/a through 0.2.41...
ActiveDEMAND <= 0.2.43 - Cross-Site Request Forgery
Description The ActiveDEMAND plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.2.43. This is due to missing or incorrect nonce validation on an unknown function. This makes it possible for unauthenticated attackers to perform an unknown actio...
CVE-2024-35638
Cross-Site Request Forgery CSRF vulnerability in JumpDEMAND Inc. ActiveDEMAND.This issue affects ActiveDEMAND: from n/a through 0.2.43...
CVE-2024-35638 WordPress ActiveDEMAND plugin <= 0.2.43 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in JumpDEMAND Inc. ActiveDEMAND.This issue affects ActiveDEMAND: from n/a through 0.2.43...
CVE-2024-35638 WordPress ActiveDEMAND plugin <= 0.2.43 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in JumpDEMAND Inc. ActiveDEMAND.This issue affects ActiveDEMAND: from n/a through 0.2.43...
WordPress ActiveDEMAND plugin <= 0.2.43 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin ActiveDEMAND versions = 0.2.43...
WordPress ActiveDEMAND Plugin <= 0.2.43 is vulnerable to Cross Site Request Forgery (CSRF)
Software ActiveDEMAND Type Plugin Vulnerable versions = 0.2.43 Fixed in 0.2.44 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-35638 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 476218797ea5 Credits Joshua Chan Required...
CVE-2024-32809
Unrestricted Upload of File with Dangerous Type vulnerability in JumpDEMAND Inc. ActiveDEMAND allows Using Malicious Files.This issue affects ActiveDEMAND: from n/a through 0.2.41...
CVE-2024-32809 WordPress ActiveDEMAND plugin <= 0.2.41 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in JumpDEMAND Inc. ActiveDEMAND allows Using Malicious Files.This issue affects ActiveDEMAND: from n/a through 0.2.41...
CVE-2024-32809
CVE-2024-32809: WordPress ActiveDEMAND plugin (ActiveDEMAND) ≤ 0.2.41 suffers Unrestricted Upload of File with Dangerous Type, allowing unauthenticated file uploads and potential full compromise. CVSSv3.1 base score 10.0 (NETWORK, HIGH impact). Patch status indicates this was patched; upgrade to ...