CVE-2026-42685

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ahmad WP Job Portal allows Reflected XSS. This issue affects WP Job Portal: from n/a through 2.5.1...

CVE-2026-42685

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ahmad WP Job Portal allows Reflected XSS. This issue affects WP Job Portal: from n/a through 2.5.1...

CVE-2026-42684

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ahmad WP Job Portal allows Blind SQL Injection. This issue affects WP Job Portal: from n/a through 2.5.1...

EUVD-2026-33909

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ahmad WP Job Portal allows Blind SQL Injection. This issue affects WP Job Portal: from n/a through 2.5.1...

WordPress Notification for Telegram plugin <= 3.4.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ahmad in WordPress Plugin Notification for Telegram versions = 3.4.7...

EUVD-2025-146120

Malicious code in ahmad-basikal npm...

CVE-2025-49948

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ahmad Awais WP Super Edit wp-super-edit allows Reflected XSS.This issue affects WP Super Edit: from n/a through = 2.5.4...

EUVD-2024-30317

Malicious code in bioql PyPI...

EUVD-2024-43467

Malicious code in bioql PyPI...

WordPress Majestic Support plugin <= 1.1.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Fariq Fadillah Gusti Insani in WordPress Plugin Majestic Support versions = 1.1.0...

CVE-2024-43267

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Qamar Sheeraz, Nasir Ahmad, GenialSouls Mega Addons For Elementor allows Stored XSS.This issue affects Mega Addons For Elementor: from n/a through 1.9...

CVE-2024-32515

Missing Authorization vulnerability in Qamar Sheeraz, Nasir Ahmad Mega Addons For Elementor.This issue affects Mega Addons For Elementor: from n/a through 1.8...

WordPress WP Job Portal plugin <= 2.3.2 - Insecure Direct Object References (IDOR) Vulnerability

Insecure Direct Object References IDOR Vulnerability discovered by LVT-tholv2k in WordPress Plugin WP Job Portal versions = 2.3.2...

CVE-2024-49604

Authentication Bypass Using an Alternate Path or Channel vulnerability in N-Media Simple User Registration wp-registration allows Authentication Bypass.This issue affects Simple User Registration: from n/a through = 6.7...

CVE-2024-53810

Missing Authorization vulnerability in N-Media Simple User Registration wp-registration allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Simple User Registration: from n/a through = 5.5...

WordPress RSVP and Event Management Plugin <= 2.7.14 - SQL Injection vulnerability

SQL Injection vulnerability discovered by AHMAD SOPYAN in WordPress Plugin RSVP and Event Management versions = 2.7.14...

WordPress WP Job Portal Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Job Portal Type Plugin Vulnerable versions = 2.2.0 Fixed in 2.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52389 Patch priority Medium CVSS severity Medium 6.5 Developer Ahmad PSID 3e42293c0184 Credits casol Required privilege Subscriber Publishe...

CVE-2024-49604

Authentication Bypass Using an Alternate Path or Channel vulnerability in N-Media Simple User Registration wp-registration allows Authentication Bypass.This issue affects Simple User Registration: from n/a through = 6.7...

CVE-2024-49604

CVE-2024-49604 targets WordPress plugin Simple User Registration (versions n/a–5.5). The issue is an Authentication Bypass via an alternate path or channel, enabling account takeovers as described in multiple sources. Public records list the vulnerability with a critical impact (base score up to ...

PT-2024-33559 · Unknown · Najeeb Ahmad Simple User Registration

Name of the Vulnerable Software and Affected Versions: Najeeb Ahmad Simple User Registration versions n/a through 5.5 Description: The issue is related to an Authentication Bypass Using an Alternate Path or Channel vulnerability. This vulnerability allows for authentication bypass, potentially...