EUVD-2024-16649

Malicious code in bioql PyPI...

EUVD-2022-24842

Malicious code in bioql PyPI...

CVE-2021-24908

The Check & Log Email WordPress plugin before 1.0.4 does not escape the d parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting...

CVE-2021-24774

The Check & Log Email WordPress plugin before 1.0.3 does not validate and escape the "order" and "orderby" GET parameters before using them in a SQL statement when viewing logs, leading to SQL injections issues...

CVE-2024-0866

The Check & Log Email plugin for WordPress is vulnerable to Unauthenticated Hook Injection in all versions up to, and including, 1.0.9 via the checknonce function. This makes it possible for unauthenticated attackers to execute actions with hooks in WordPress under certain circumstances. The acti...

CVE-2024-0866

The Check & Log Email plugin for WordPress is vulnerable to Unauthenticated Hook Injection in all versions up to, and including, 1.0.9 via the checknonce function. This makes it possible for unauthenticated attackers to execute actions with hooks in WordPress under certain circumstances. The acti...

CVE-2024-0866

CVE-2024-0866 affects the Check & Log Email WordPress plugin. It enables Unauthenticated Hook Injection in versions up to 1.0.9 via check_nonce, requiring a known nonce and no capability check. Documented impact is high (CVSS 3.1 8.1); Red Hat and Wordfence sources corroborate. The vulnerability ...

CVE-2024-0866 Check & Log Email <= 1.0.9 - Unauthenticated Hook Injection

The Check & Log Email plugin for WordPress is vulnerable to Unauthenticated Hook Injection in all versions up to, and including, 1.0.9 via the checknonce function. This makes it possible for unauthenticated attackers to execute actions with hooks in WordPress under certain circumstances. The acti...

WordPress Check & Log Email Plugin <= 1.0.9 is vulnerable to Broken Access Control

Software Check & Log Email Type Plugin Vulnerable versions = 1.0.9 Fixed in 1.0.10 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-0866 Patch priority Low CVSS severity Low 8.1 Developer Claim ownership PSID 0ac766d27e85 Credits Sean Murphy Required...

CVE-2022-1547

The Check & Log Email WordPress plugin before 1.0.6 does not sanitise and escape a parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting...

CVE-2022-1547

CVE-2022-1547 – Check & Log Email WordPress plugin (

WordPress plugin Check & Log Email 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Check...

WordPress Check & Log Email plugin <= 1.0.5 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered in WordPress Check & Log Email plugin versions = 1.0.5. Solution Update the WordPress Check & Log Email plugin to the latest available version at least 1.0.6...

WordPress plugin cross-site scripting vulnerability (CNVD-2021-102401)

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in the Check ...

CVE-2021-24908

The CVE concerns the WordPress plugin Check & Log Email (before version 1.0.4). The vulnerability arises from improper escaping of the d parameter when it is echoed inside an attribute, enabling a Reflected Cross-Site Scripting (XSS) condition. Affected version range is up to 1.0.3; version 1.0.4...

CVE-2021-24908 Check & Log Email < 1.0.4 - Reflected Cross-Site Scripting

The Check & Log Email WordPress plugin before 1.0.4 does not escape the d parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting...

WordPress Check & Log Email plugin <= 1.0.3 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by JrXnm in WordPress Check & Log Email plugin versions = 1.0.3. Solution Update the WordPress Check & Log Email plugin to the latest available version at least 1.0.4...

WordPress Check & Log Email plugin <= 1.0.2 - Multiple SQL Injection (SQLi) vulnerabilities

Multiple SQL Injection SQLi vulnerabilities were discovered by bl4derunner in WordPress Check & Log Email plugin versions = 1.0.2. Solution Update the WordPress Check & Log Email plugin to the latest available version at least 1.0.3...

WordPress Check & Log Email plugin <= 0.5 - Cross-Site Scripting (XSS) vulnerability

Cross-Site Scripting XSS vulnerability discovered by ethicalhack3r in WordPress Check & Log Email plugin versions = 0.5. Solution Update the WordPress Check & Log Email plugin to the latest available version at least 0.5.2...