15 matches found
EUVD-2025-11645
Malicious code in bioql PyPI...
CVE-2025-31006
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in arete-it Activity Reactions For Buddypress activity-reactions-for-buddypress allows Reflected XSS.This issue affects Activity Reactions For Buddypress: from n/a through = 1.0.22...
CVE-2025-31006
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in arete-it Activity Reactions For Buddypress activity-reactions-for-buddypress allows Reflected XSS.This issue affects Activity Reactions For Buddypress: from n/a through = 1.0.22...
CVE-2025-31006 WordPress Activity Reactions For Buddypress plugin <= 1.0.22 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in arete-it Activity Reactions For Buddypress activity-reactions-for-buddypress allows Reflected XSS.This issue affects Activity Reactions For Buddypress: from n/a through = 1.0.22...
CVE-2025-31006 WordPress Activity Reactions For Buddypress plugin <= 1.0.22 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in arete-it Activity Reactions For Buddypress activity-reactions-for-buddypress allows Reflected XSS.This issue affects Activity Reactions For Buddypress: from n/a through = 1.0.22...
CVE-2025-31006
CVE-2025-31006 is an XSS vulnerability in WordPress plugin arete-it Activity Reactions For Buddypress (affected: Activity Reactions For Buddypress
WordPress plugin Activity Reactions For Buddypress 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPre...
Wordpress BuddyPress plugin <= 12.5.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
Authenticated Subscriber+ Stored Cross-Site Scripting vulnerability discovered by wesley wcraft in WordPress Plugin Activity Reactions For Buddypress versions = 12.5.0...
WordPress Activity Reactions For Buddypress Plugin <= 12.5.0 is vulnerable to Cross Site Scripting (XSS)
Software Activity Reactions For Buddypress Type Plugin Vulnerable versions = 12.5.0 Fixed in 12.5.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4892 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 0a3e1e0166ec Credit...
CVE-2022-45074
Cross-Site Request Forgery CSRF vulnerability in Paramveer Singh for Arete IT Private Limited Activity Reactions For Buddypress plugin = 1.0.22 versions...
CVE-2022-45074
Cross-Site Request Forgery CSRF vulnerability in Paramveer Singh for Arete IT Private Limited Activity Reactions For Buddypress plugin = 1.0.22 versions...
CVE-2022-45074
CVE-2022-45074 refers to a CSRF vulnerability in the WordPress Activity Reactions for Buddypress plugin (versions
CVE-2022-45074 WordPress Activity Reactions For Buddypress Plugin <= 1.0.22 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Paramveer Singh for Arete IT Private Limited Activity Reactions For Buddypress plugin = 1.0.22 versions...
WordPress Plugin Activity Reactions For Buddypress 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
PT-2023-14586 · WordPress · Activity Reactions For Buddypress
Name of the Vulnerable Software and Affected Versions: Activity Reactions For Buddypress plugin versions = 1.0.22 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions ...