PT-2026-43638

Missing Authorization vulnerability in Strategy11 Team AWP Classifieds another-wordpress-classifieds-plugin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AWP Classifieds: from n/a through = 4.4.5...

PT-2026-33765

https://t.co/4bpvciSJjS CVE-2026-39533 WordPress plugin vulnerability another-wordpress-classifieds-plugin cybersecurity wordpressfirewall wordpresssecurity hack…...

VulnCheck KEV: CVE-2022-3254

The WordPress Classifieds Plugin WordPress plugin before 4.3 does not properly sanitise and escape some parameters before using them in a SQL statement via an AJAX action available to unauthenticated users and when a specific premium module is active, leading to a SQL injection...

CVE-2026-24593 WordPress AWP Classifieds plugin <= 4.4.3 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Strategy11 Team AWP Classifieds another-wordpress-classifieds-plugin allows Retrieve Embedded Sensitive Data.This issue affects AWP Classifieds: from n/a through = 4.4.3...

PT-2026-4428

Name of the Vulnerable Software and Affected Versions AWP Classifieds versions through 4.4.3 Description The AWP Classifieds plugin contains a flaw that allows the retrieval of embedded sensitive data, potentially exposing system information to unauthorized access. Recommendations Update AWP...

CVE-2025-12577 Listar – Directory Listing & Classifieds WordPress Plugin <= 3.0.0 - Missing Authorization to Authenticated (Subscriber+) Listing Update

The Listar – Directory Listing & Classifieds WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the '/wp-json/listar/v1/place/save' REST API endpoint in all versions up to, and including, 3.0.0. This makes it possible for...

CVE-2025-12574

CVE-2025-12574 concerns Listar – Directory Listing & Classifieds WordPress Plugin (

WordPress Listar – Directory Listing & Classifieds WordPress plugin plugin <= 3.0.0 - Missing Authorization to Authenticated (Subscriber+) Listing Update vulnerability

Missing Authorization to Authenticated Subscriber+ Listing Update vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Listar – Directory Listing & Classifieds versions = 3.0.0...

WordPress plugin Listar – Directory Listing & Classifieds WordPress Plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

EUVD-2012-6562

Malware in sbrugna...

EUVD-2023-46293

Malicious code in bioql PyPI...

EUVD-2023-56186

Malicious code in bioql PyPI...

CVE-2025-57928 WordPress AWP Classifieds plugin <= 4.4.3 - Content Injection vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Strategy11 Team AWP Classifieds another-wordpress-classifieds-plugin allows Code Injection.This issue affects AWP Classifieds: from n/a through = 4.4.3...

CVE-2025-57928 WordPress AWP Classifieds plugin <= 4.4.3 - Content Injection vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Strategy11 Team AWP Classifieds another-wordpress-classifieds-plugin allows Code Injection.This issue affects AWP Classifieds: from n/a through = 4.4.3...

CVE-2012-4874

Unspecified vulnerability in the Another WordPress Classifieds Plugin before 2.0 for WordPress has unknown impact and attack vectors related to "image uploads."...

PT-2025-5408 · WordPress · Cleanup – Directory Listing & Classifieds Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: Cleanup – Directory Listing & Classifieds WordPress Plugin versions 1.0.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for...

PT-2025-2467 · WordPress · Wpadverts

Name of the Vulnerable Software and Affected Versions: WPAdverts – Classifieds Plugin versions n/a through 2.1.2 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This can be achieved by trickin...

CVE-2024-10890

The WPAdverts – Classifieds Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg & removequeryarg without appropriate escaping on the URL in all versions up to, and including, 2.1.7. This makes it possible for unauthenticated attackers to injec...

CVE-2024-10890 WPAdverts – Classifieds Plugin <= 2.1.7 - Reflected Cross-Site Scripting

The WPAdverts – Classifieds Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg & removequeryarg without appropriate escaping on the URL in all versions up to, and including, 2.1.7. This makes it possible for unauthenticated attackers to injec...

CVE-2024-10890

CVE-2024-10890 describes a reflected Cross-Site Scripting vulnerability in the WordPress plugin “WPAdverts – Classifieds Plugin” up to version 2.1.7. The issue stems from using add_query_arg and remove_query_arg without proper escaping, enabling unauthenticated attackers to inject script into pag...