5 matches found
PT-2026-46337
Unauthenticated Local File Inclusion in Dazzle = 1.0.0 versions...
PT-2026-46326
Unauthenticated Local File Inclusion in Raider Spirit = 1.1.2 versions...
PT-2026-46372
Unauthenticated Local File Inclusion in Spike = 1.2 versions...
CVE-2025-11993
creationtimestamp| type| source ---|---|--- 2026-05-29 09:13:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmy73gep4d2e 2026-05-29 12:20:32+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mmyjjk3q7n2y 2026-05-31 03:01:34+00:00| seen|...
CVE-2025-11993 WooCommerce Infinite Scroll and Ajax Pagination <= 1.8 - Authenticated (Subscriber+) PHP Object Injection
The WooCommerce Infinite Scroll and Ajax Pagination plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.8 via the 'settings' parameter in the 'importsettings' function. This is due to deserialization of untrusted data supplied via the import...