Malicious code in elevio-addon-support (npm)

The package elevio-addon-support was found to contain malicious code...

Malicious code in my-first-addon (npm)

The package my-first-addon was found to contain malicious code...

Malicious code in storybook-addon-data-roulette (npm)

The package storybook-addon-data-roulette was found to contain malicious code...

MAL-2025-17572 Malicious code in cordova-plugins-devextremeaddon (npm)

The package cordova-plugins-devextremeaddon was found to contain malicious code...

MAL-2025-17564 Malicious code in cordova-plugin-devextremeaddon (npm)

The package cordova-plugin-devextremeaddon was found to contain malicious code...

MAL-2025-34010 Malicious code in storybook-addon-data-roulette (npm)

The package storybook-addon-data-roulette was found to contain malicious code...

MAL-2025-19521 Malicious code in elevio-addon-support (npm)

The package elevio-addon-support was found to contain malicious code...

MAL-2025-13963 Malicious code in ac-addon (npm)

The package ac-addon was found to contain malicious code...

MAL-2025-26946 Malicious code in my-first-addon (npm)

The package my-first-addon was found to contain malicious code...

MAL-2025-17565 Malicious code in cordova-plugin-devextremeaddon1 (npm)

The package cordova-plugin-devextremeaddon1 was found to contain malicious code...

CVE-2024-37945

The CVE-2024-37945 entry concerns the WPBITS Addons For Elementor Page Builder plugin (versions

CVE-2025-49036

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in octagonwebstudio Premium Addons for KingComposer premium-addons-for-kingcomposer allows PHP Local File Inclusion.This issue affects Premium Addons for KingComposer: from n/a...

CVE-2025-31007

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alvind Billplz Addon for Contact Form 7 billplz-for-contact-form-7 allows Reflected XSS.This issue affects Billplz Addon for Contact Form 7: from n/a through = 1.2.0...

CVE-2025-30626

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Multimedia Playlist Slider Addon for WPBakery Page Builder lbgvpyoutubevimeoaddonvisualcomposer allows Reflected XSS.This issue affects Multimedia Playlist Slider Addon for WPBakery Pa...

CVE-2025-30626

CVE-2025-30626 is a Reflected Cross-Site Scripting vulnerability in the WordPress plugin Multimedia Playlist Slider Addon for WPBakery Page Builder (LambertGroup), affecting versions up to 2.1. The issue stems from improper input neutralization during web page generation, enabling an attacker to ...

CVE-2025-30626 WordPress Multimedia Playlist Slider Addon for WPBakery Page Builder <= 2.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Multimedia Playlist Slider Addon for WPBakery Page Builder lbgvpyoutubevimeoaddonvisualcomposer allows Reflected XSS.This issue affects Multimedia Playlist Slider Addon for WPBakery Pa...

CVE-2025-31007 WordPress Billplz Addon for Contact Form 7 Plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alvind Billplz Addon for Contact Form 7 billplz-for-contact-form-7 allows Reflected XSS.This issue affects Billplz Addon for Contact Form 7: from n/a through = 1.2.0...

CVE-2025-31007

CVE-2025-31007 is a Reflected XSS in the Billplz Addon for Contact Form 7 (WordPress). The vulnerability arises from improper input neutralization during web page generation, allowing arbitrary script execution when a user is tricked into submitting crafted input. Affected software: Billplz Addon...

CVE-2025-31007 WordPress Billplz Addon for Contact Form 7 Plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alvind Billplz Addon for Contact Form 7 billplz-for-contact-form-7 allows Reflected XSS.This issue affects Billplz Addon for Contact Form 7: from n/a through = 1.2.0...

PT-2025-33159 · WordPress · Multimedia Playlist Slider Addon For Wpbakery Page Builder

Name of the Vulnerable Software and Affected Versions: Multimedia Playlist Slider Addon for WPBakery Page Builder versions through 2.1 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, specifically a Reflected Cross-site Scripting XSS flaw...