CVE-2023-40199

Cross-Site Request Forgery CSRF vulnerability in CRUDLab WP Like Button plugin = 1.7.0 versions...

CVE-2025-23938

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CRUDLab Image Gallery Box by CRUDLab image-gallery-box-by-crudlab allows PHP Local File Inclusion.This issue affects Image Gallery Box by CRUDLab: from n/a through = 1.0.3...

EUVD-2023-37187

Malicious code in bioql PyPI...

EUVD-2025-3552

Malicious code in bioql PyPI...

EUVD-2025-5679

Malicious code in bioql PyPI...

EUVD-2023-37186

Malicious code in bioql PyPI...

EUVD-2024-52519

Malicious code in bioql PyPI...

EUVD-2025-11604

Malicious code in bioql PyPI...

EUVD-2023-44796

Malicious code in bioql PyPI...

CVE-2023-32966

Cross-Site Request Forgery CSRF vulnerability in CRUDLab Jazz Popups leads to Stored XSS.This issue affects Jazz Popups: from n/a through 1.8.7...

CVE-2023-32965

Unauth. Reflected Cross-Site Scripting XSS vulnerability in CRUDLab Jazz Popups plugin = 1.8.7 versions...

CVE-2023-47820

Missing Authorization vulnerability in CRUDLab WP Like Button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Like Button: from n/a through 1.7.0...

CVE-2019-13344

An authentication bypass vulnerability in the CRUDLab WP Like Button plugin through 1.6.0 for WordPress allows unauthenticated attackers to change settings. The contains function in wplikebutton.php did not check if the current request is made by an authorized user, thus allowing any...

CVE-2025-22774

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRUDLab CRUDLab Scroll to Top crudlab-scroll-to-top allows Reflected XSS.This issue affects CRUDLab Scroll to Top: from n/a through = 1.0.1...

CVE-2025-22774

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRUDLab CRUDLab Scroll to Top crudlab-scroll-to-top allows Reflected XSS.This issue affects CRUDLab Scroll to Top: from n/a through = 1.0.1...

CVE-2025-22774 WordPress CRUDLab Scroll to Top Plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRUDLab CRUDLab Scroll to Top crudlab-scroll-to-top allows Reflected XSS.This issue affects CRUDLab Scroll to Top: from n/a through = 1.0.1...

CVE-2025-22774 WordPress CRUDLab Scroll to Top Plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRUDLab CRUDLab Scroll to Top crudlab-scroll-to-top allows Reflected XSS.This issue affects CRUDLab Scroll to Top: from n/a through = 1.0.1...

CVE-2025-22774

CVE-2025-22774 is a reflected XSS in the WordPress plugin CRUDLab Scroll to Top (versions up to 1.0.1). Technical details: affected software is CRUDLab Scroll to Top; vulnerability class is Cross-Site Scripting (Reflected). CVSS3.1 base score is 7.1 (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L). Root cau...

PT-2025-16973 · Unknown · Crudlab Scroll To Top

Name of the Vulnerable Software and Affected Versions: CRUDLab Scroll to Top versions 1.0.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS in CRUDLab Scroll to Top...

WordPress plugin CRUDLab Scroll to Top 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists i...