7 matches found
CVE-2025-68882
Missing Authorization vulnerability in Scalenut Scalenut scalenut allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Scalenut: from n/a through = 1.1.3...
CVE-2025-62147 WordPress Realbig plugin <= 1.1.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in nikmelnik Realbig realbig-media allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Realbig: from n/a through = 1.1.3...
PT-2025-5431 · Bplugins · Bplugins All Embed – Elementor Addons
Name of the Vulnerable Software and Affected Versions: bPlugins All Embed – Elementor Addons versions 1.1.3 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting XSS. This means an attacker can...
PT-2025-5462 · WordPress · Orbisius Simple Notice
Name of the Vulnerable Software and Affected Versions: Orbisius Simple Notice versions 1.1.3 and earlier Description: The issue affects the Orbisius Simple Notice plugin, allowing Stored XSS due to improper neutralization of input during web page generation. This can lead to cross-site scripting...
LicenseStore (=0.1.0), NT-anchor-lang (=0.19.0) +2866 more potentially affected by CVE-2024-58262 via curve25519-dalek (>=1.1.3 <=4.1.0)
curve25519-dalek CARGO version =1.1.3, =0.19.0, =0.4.1, =0.2.4, =0.13.0, =0.16.0, =0.1.0, =0.0.1, =0.1.0, =0.2.0-beta.4, =0.2.0-beta.4, =0.13.0, =0.16.5, =0.16.7 and more Source cves: CVE-2024-58262 Source advisory: OSV:GHSA-X4GP-PQPJ-F43Q...
WordPress theme Financio 跨站请求伪造漏洞
WordPress is a blogging platform developed in PHP by the WordPress Foundation. The platform supports personal blog sites on PHP and MySQL servers.WordPress theme is a theme for WordPress. A cross-site request forgery vulnerability exists in WordPress theme Financio version 1.1.3 and earlier...
PT-2023-20616 · WordPress · Get Your Number Wordpress Plugin
Name of the Vulnerable Software and Affected Versions: Get your number WordPress plugin versions 1.1.3 and earlier Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This can occur even when the unfiltered html capability is...