17 matches found
CVE-2026-4409
The Subscribe To Comments Reloaded plugin for WordPress is vulnerable to unauthorized modification of data due to a leaked secret key and usage of a weak hash generation algorithm in all versions up to, and including, 240119. This makes it possible for unauthenticated attackers to extract the...
EUVD-2024-29145
Malicious code in bioql PyPI...
CVE-2024-31249
Insertion of Sensitive Information into Log File vulnerability in WPKube Subscribe To Comments Reloaded.This issue affects Subscribe To Comments Reloaded: from n/a through 220725...
CVE-2024-31249
Insertion of Sensitive Information into Log File vulnerability in WPKube Subscribe To Comments Reloaded.This issue affects Subscribe To Comments Reloaded: from n/a through 220725...
CVE-2024-31249 WordPress Subscribe To Comments Reloaded plugin <= 220725 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information into Log File vulnerability in WPKube Subscribe To Comments Reloaded.This issue affects Subscribe To Comments Reloaded: from n/a through 220725...
CVE-2024-31249
CVE-2024-31249 is a vulnerability described as an Insertion of Sensitive Information into Log File affecting the WordPress plugin Subscribe To Comments Reloaded (WPKube). Public details indicate the issue impacts the Subscribe To Comments Reloaded plugin up to version 220725 (n/a through 220725)....
CVE-2024-31249 WordPress Subscribe To Comments Reloaded plugin <= 220725 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information into Log File vulnerability in WPKube Subscribe To Comments Reloaded.This issue affects Subscribe To Comments Reloaded: from n/a through 220725...
PT-2024-23891 · WordPress · Wpkube Subscribe To Comments Reloaded
Name of the Vulnerable Software and Affected Versions: WPKube Subscribe To Comments Reloaded versions from n/a through 220725 Description: The issue is related to the insertion of sensitive information into log files. This can potentially expose sensitive data. Recommendations: For versions from...
WordPress Subscribe To Comments Reloaded plugin <= 220725 - Sensitive Data Exposure vulnerability
Sensitive Data Exposure vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Subscribe To Comments Reloaded versions = 220725...
WordPress Subscribe To Comments Reloaded Plugin <= 220725 is vulnerable to Sensitive Data Exposure
Software Subscribe To Comments Reloaded Type Plugin Vulnerable versions = 220725 Fixed in 240119 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-31249 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 45c0e6e3acea...
WordPress Subscribe To Comments Reloaded plugin cross-site request forgery vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Subscribe To Comments Reloaded plugin 211130 and earlier versions are vulnerable to cross-site...
CVE-2022-29414
Multiple 13x Cross-Site Request Forgery CSRF vulnerabilities in WPKube's Subscribe To Comments Reloaded plugin mass update settings, manage subscriptions add a new subscription, update subscription, delete Subscription...
CVE-2022-29414
The CVE-2022-29414 entry concerns WordPress Subscribe To Comments Reloaded plugin (
WordPress Subscribe To Comments Reloaded plugin <= 211130 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
Multiple Cross-Site Request Forgery CSRF vulnerabilities discovered by Ex.Mi Patchstack in WordPress Subscribe To Comments Reloaded plugin versions = 211130. Solution Update the WordPress Subscribe To Comments Reloaded plugin to the latest available version at least 220502...
CVE-2014-2274
Cross-site request forgery CSRF vulnerability in the Subscribe To Comments Reloaded plugin before 140219 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via a request to the...
CVE-2014-2274
CVE-2014-2274 affects the WordPress plugin “Subscribe To Comments Reloaded” (pre-140219). The vulnerability is a Cross-Site Request Forgery (CSRF) that allows remote attackers to hijack administrator authentication for requests that perform Cross-Site Scripting (XSS) via the subscribe-to-comments...
Subscribe To Comments Reloaded 140204 - options/index.php manager_page Parameter Stored XSS Weakness
The Subscribe To Comments Reloaded WordPress plugin was affected by an options/index.php managerpage Parameter Stored XSS Weakness security vulnerability...