2195 matches found
EUVD-2026-15694
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in eyecix Addon Jobsearch Chat addon-jobsearch-chat allows Reflected XSS.This issue affects Addon Jobsearch Chat: from n/a through = 3.0...
EUVD-2026-15695
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in eyecix Addon Jobsearch Chat addon-jobsearch-chat allows SQL Injection.This issue affects Addon Jobsearch Chat: from n/a through = 3.0...
EUVD-2026-15611
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Element Invader ElementInvader Addons for Elementor elementinvader-addons-for-elementor allows Blind SQL Injection.This issue affects ElementInvader Addons for Elementor: from n/a through = 1.4.2...
CVE-2026-25377
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in eyecix Addon Jobsearch Chat addon-jobsearch-chat allows SQL Injection.This issue affects Addon Jobsearch Chat: from n/a through = 3.0...
CVE-2026-25376
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in eyecix Addon Jobsearch Chat addon-jobsearch-chat allows Reflected XSS.This issue affects Addon Jobsearch Chat: from n/a through = 3.0...
CVE-2026-25376 WordPress Addon Jobsearch Chat plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in eyecix Addon Jobsearch Chat addon-jobsearch-chat allows Reflected XSS.This issue affects Addon Jobsearch Chat: from n/a through = 3.0...
CVE-2026-25377 WordPress Addon Jobsearch Chat plugin <= 3.0 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in eyecix Addon Jobsearch Chat addon-jobsearch-chat allows SQL Injection.This issue affects Addon Jobsearch Chat: from n/a through = 3.0...
CVE-2026-25376 WordPress Addon Jobsearch Chat plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in eyecix Addon Jobsearch Chat addon-jobsearch-chat allows Reflected XSS.This issue affects Addon Jobsearch Chat: from n/a through = 3.0...
CVE-2026-25376
CVE-2026-25376 —Concrete details across multiple sources show a Reflected Cross-Site Scripting (XSS) flaw in the WordPress addon/plugin named “Addon Jobsearch Chat” by eyecix, affecting versions through 3.0. The root cause is improper input handling during web page generation , allowing malicious...
CVE-2026-25377
CVE-2026-25377 concerns the WordPress plugin Addon Jobsearch Chat (component: addon-jobsearch-chat) with versions n/a through 3.0. The vulnerability stems from improper neutralization of special elements in SQL commands, resulting in an SQL injection flaw. Impact details are limited in the provid...
CVE-2026-25007 WordPress ElementInvader Addons for Elementor plugin <= 1.4.2 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Element Invader ElementInvader Addons for Elementor elementinvader-addons-for-elementor allows Blind SQL Injection.This issue affects ElementInvader Addons for Elementor: from n/a through = 1.4.2...
CVE-2026-25007
ElementInvader Addons for Elementor (WordPress plugin) up to version 1.4.2 contains an SQL Injection vulnerability due to improper neutralization of special elements in SQL commands, allowing blind SQL injection. Affected versions are n/a through 1.4.2. The vulnerability is described consistently...
PT-2026-27900
Name of the Vulnerable Software and Affected Versions Product File Upload for WooCommerce versions n/a through 2.2.4 Description An improper limitation of a pathname to a restricted directory, specifically a 'Path Traversal' issue, exists in Product File Upload for WooCommerce. This allows for...
PT-2026-27928
Name of the Vulnerable Software and Affected Versions eyecix Addon Jobsearch Chat versions n/a through 3.0 Description The eyecix Addon Jobsearch Chat addon contains a flaw due to improper neutralization of special elements used in an SQL command, leading to a SQL injection issue. This allows for...
WordPress plugin Addon Jobsearch Chat SQL注入漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
PT-2026-27927
Name of the Vulnerable Software and Affected Versions eyecix Addon Jobsearch Chat versions through 3.0 Description The software contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-Site Scripting XSS. This issue impacts the Addon Jobsearc...
WordPress plugin Addon Jobsearch Chat 安全漏洞
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in Addon Jobsearch Chat, a WordPress plugin, for...
PT-2026-27936
Name of the Vulnerable Software and Affected Versions File Uploader for WooCommerce versions through 1.0.4 Description The File Uploader for WooCommerce software contains a path traversal flaw. The issue is due to insufficient sanitization of user-supplied input, specifically allowing the use of...
WordPress ElementInvader Addons for Elementor plugin <= 1.4.2 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Nabil Irawan in WordPress Plugin ElementInvader Addons for Elementor versions = 1.4.2...
WordPress Addon Jobsearch Chat plugin <= 3.0 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Phat RiO in WordPress Plugin Addon Jobsearch Chat versions = 3.0...