3 matches found
CVE-2026-13333
The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via 'queryselect' Parameter in all versions up to, and including, 4.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...
PT-2025-49888
Name of the Vulnerable Software and Affected Versions vcita Online Booking & Scheduling Calendar for WordPress by vcita versions through 4.5.5 Description The software contains a Cross-Site Request Forgery CSRF flaw. This allows attackers to potentially perform actions on behalf of an authenticat...
qBittorrent Trust Management Issues Vulnerabilities
qBittorrent is a cross-platform lightweight BitTorrent client. A security vulnerability exists in qBittorrent 4.5.5 and earlier versions, which stems from the use of default credentials, and can be used by a remote attacker to execute arbitrary operating system commands...