20 matches found
EUVD-2025-26958
Malicious code in bioql PyPI...
EUVD-2025-13781
Malicious code in bioql PyPI...
CVE-2025-58819
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-58819
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-58819
CVE-2025-58819 describes an unrestricted file upload vulnerability in the WordPress plugin Bulk Featured Image (versions up to 1.2.2). The flaw permits uploading files with dangerous types, enabling potential web-shell upload to the web server. Multiple connected sources corroborate the affected ...
CVE-2025-58819 WordPress Bulk Featured Image plugin <= 1.2.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-58819 WordPress Bulk Featured Image plugin <= 1.2.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
WordPress Bulk Featured Image plugin <= 1.2.4 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by Nabil Irawan in WordPress Plugin Bulk Featured Image versions = 1.2.4...
WordPress plugin Bulk Featured Image 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...
PT-2025-36158
Name of the Vulnerable Software and Affected Versions: CreedAlly Bulk Featured Image versions through 1.2.2 Description: The Bulk Featured Image plugin contains a vulnerability that allows for the unrestricted upload of files with dangerous types, potentially enabling the upload of a web shell to...
CVE-2025-28951
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-28951
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-28951 WordPress Bulk Featured Image plugin <= 1.2.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-28951 WordPress Bulk Featured Image plugin <= 1.2.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Upload a Web Shell to a Web Server.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-28951
CVE-2025-28951 describes an Unrestricted Upload of File with Dangerous Type in the Bulk Featured Image WordPress plugin (versions up to 1.2.1/1.2.4 per sources). The vulnerability allows uploading of a web shell due to accepting dangerous file types, enabling remote code execution on the web serv...
WordPress plugin Bulk Featured Image 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...
PT-2025-27876 · Unknown · Creedally Bulk Featured Image
Name of the Vulnerable Software and Affected Versions: CreedAlly Bulk Featured Image versions 1.2.1 and earlier Description: The issue allows uploading a Web Shell to a web server due to unrestricted file upload with dangerous file types. Recommendations: For CreedAlly Bulk Featured Image version...
CVE-2025-47591
Missing Authorization vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
CVE-2025-47591
Missing Authorization vulnerability in CreedAlly Bulk Featured Image bulk-featured-image allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Bulk Featured Image: from n/a through = 1.2.4...
WordPress plugin Bulk Featured Image 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...