CVE-2026-9009

The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.7.2 via the filtercontent function. This is due to passing the attacker-supplied 'callbackraw' shortcode attribute directly into calluserfunc with n...

CVE-2026-9009

The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.7.2 via the filtercontent function. This is due to passing the attacker-supplied 'callbackraw' shortcode attribute directly into calluserfunc with n...

CVE-2026-9009

CVE-2026-9009 affects the Crawlomatic Multipage Scraper Post Generator plugin for WordPress (versions up to 2.7.2). The root cause is insecure handling of the attacker-supplied shortcode attributes callback_raw and callback, which are passed directly into call_user_func() after only an is_callabl...

EUVD-2025-17268

Malicious code in bioql PyPI...

CVE-2025-49294

Insertion of Sensitive Information Into Sent Data vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Retrieve Embedded Sensitive Data.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through =...

CVE-2025-49294 WordPress Crawlomatic Multisite Scraper Post Generator plugin <= 2.6.8.2 - Sensitive Data Exposure via Log Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Retrieve Embedded Sensitive Data.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through =...

CVE-2025-49293

CVE-2025-49293 is a Missing Authorization vulnerability in the WordPress plugin Crawlomatic Multisite Scraper Post Generator. Exploitation could allow unauthorized access due to misconfigured access control. Affected versions are Crawlomatic Multisite Scraper Post Generator

PT-2025-24227 · Unknown · Crawlomatic Multipage Scraper Post Generator

Name of the Vulnerable Software and Affected Versions: Crawlomatic Multisite Scraper Post Generator versions 2.6.8.2 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels...

PT-2025-24228 · Unknown · Crawlomatic Multipage Scraper Post Generator

Name of the Vulnerable Software and Affected Versions: Crawlomatic Multisite Scraper Post Generator versions 2.6.8.2 and earlier Description: The issue allows for the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. Recommendations: For versions...

PT-2025-21776

Name of the Vulnerable Software and Affected Versions: Crawlomatic Multipage Scraper Post Generator plugin for WordPress versions up to, and including, 2.6.8.1 Description: The issue is related to arbitrary file uploads due to missing file type validation in the crawlomatic generate featured imag...