7703 matches found
WordPress plugin Blog Designer 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
PT-2025-38840
Name of the Vulnerable Software and Affected Versions solwininfotech Blog Designer versions through 3.1.8 Description An authorization issue exists in solwininfotech Blog Designer due to incorrectly configured access control security levels. This allows for exploitation of the system...
Friday Squid Blogging: Giant Squid vs. Blue Whale
A comparison aimed at kids...
How Enterprise SEO Solutions Improve Brand Authority
Now, especially in a very competitive environment, it is essential to make your name shine. Enterprise SEO solutions…...
Introducing Akamai Partner Connect: Built with You, for You
...
Move Over, DDoS: It’s the Era of Distributed Denial of Defense (DDoD)
...
AI Training Data: Winning in the AI Boom
...
CVE-2025-8481
The Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.1.7. This is due to missing or incorrect nonce validation on the bdfeinstallactivaterswpbsonly function. This makes it possible for unauthenticated...
CVE-2025-47695
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in solwin Blog Designer PRO blog-designer-pro.This issue affects Blog Designer PRO: from n/a through = 3.4.7...
CVE-2025-47694
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in solwin Blog Designer PRO blog-designer-pro.This issue affects Blog Designer PRO: from n/a through = 3.4.7...
CVE-2025-8481
The Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.1.7. This is due to missing or incorrect nonce validation on the bdfeinstallactivaterswpbsonly function. This makes it possible for unauthenticated...
CVE-2025-8481
CVE-2025-8481 concerns the WordPress plugin “Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid” (version ≤ 1.1.7). The issue is a Cross‑Site Request Forgery (CSRF) due to missing/incorrect nonce validation in the bdfe_install_activate_rswpbs_only function. The description states...
CVE-2025-8481 Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid <= 1.1.7 - Cross-Site Request Forgery
The Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.1.7. This is due to missing or incorrect nonce validation on the bdfeinstallactivaterswpbsonly function. This makes it possible for unauthenticated...
WordPress Blog Designer For Elementor plugin <= 1.1.7 - Cross-Site Request Forgery vulnerability
Cross-Site Request Forgery vulnerability discovered by wesley wcraft in WordPress Plugin Blog Designer For Elementor versions = 1.1.7...
PT-2025-37132
The Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.1.7. This is due to missing or incorrect nonce validation on the bdfe install activate rswpbs only function. This makes it possible for...
CVE-2025-58365
The XWiki blog application allows users of the XWiki platform to create and manage blog posts. Prior to version 9.14, the blog application in XWiki allowed remote code execution for any user who has edit right on any page. Normally, these are all logged-in users as they can edit their own user...
Understand the Attack Surface: Retail Supply Chain Cybersecurity Risks
...
SQL Injection
moonshine/moonshine is vulnerable to SQL injection. The vulnerability is due to improper handling of the Data parameter in the Blog module, which allows an attacker to inject malicious SQL queries...
CVE-2025-9086
creationtimestamp| type| source ---|---|--- 2025-09-10 03:49:32+00:00| seen| https://daniel.haxx.se/blog/2025/09/10/curl-8-16-0/ 2025-09-10 03:55:35+00:00| seen| https://seclists.org/oss-sec/2025/q3/160 2025-09-10 05:57:51+00:00| seen|...
CVE-2025-10148
creationtimestamp| type| source ---|---|--- 2025-09-10 03:49:32+00:00| seen| https://daniel.haxx.se/blog/2025/09/10/curl-8-16-0/ 2025-09-10 03:58:42+00:00| seen| https://seclists.org/oss-sec/2025/q3/161 2025-09-10 05:58:15+00:00| seen|...