20 matches found
EUVD-2023-31220
Malicious code in bioql PyPI...
EUVD-2024-28176
Malicious code in bioql PyPI...
CVE-2023-27444
Cross-Site Request Forgery CSRF vulnerability in Pierre Lannoy / PerfOps One DecaLog plugin = 3.7.0 versions...
CVE-2024-30245
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pierre Lannoy DecaLog decalog.This issue affects DecaLog: from n/a through = 3.9.0...
CVE-2024-30245
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pierre Lannoy DecaLog decalog.This issue affects DecaLog: from n/a through = 3.9.0...
CVE-2024-30245
CVE-2024-30245 : The WordPress DecaLog plugin is vulnerable to an SQL injection in versions up to 3.9.0 due to improper neutralization/escaping of user input in SQL statements. This affects DecaLog for WordPress and is documented as an authenticated (Admin+) issue (PatchStack notes the vulnerabil...
CVE-2024-30245 WordPress DecaLog plugin <= 3.9.0 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pierre Lannoy DecaLog decalog.This issue affects DecaLog: from n/a through = 3.9.0...
CVE-2024-30245 WordPress DecaLog plugin <= 3.9.0 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pierre Lannoy DecaLog decalog.This issue affects DecaLog: from n/a through = 3.9.0...
WordPress Plugin DecaLog SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exist...
PT-2024-23292 · Decalog · Decalog
Name of the Vulnerable Software and Affected Versions: DecaLog versions prior to 3.9.0 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation by injecting malicious SQL...
WordPress DecaLog Plugin <= 3.9.0 is vulnerable to SQL Injection
Software DecaLog Type Plugin Vulnerable versions = 3.9.0 Fixed in 3.9.1 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30245 Patch priority Low CVSS severity Low 7.6 Developer PerfOps One PSID fc0c7a2f2f75 Credits isacaya Required privilege Administrator Published 26 March,...
CVE-2023-27444
Cross-Site Request Forgery CSRF vulnerability in Pierre Lannoy / PerfOps One DecaLog plugin = 3.7.0 versions...
CVE-2023-27444
Cross-Site Request Forgery CSRF vulnerability in Pierre Lannoy / PerfOps One DecaLog plugin = 3.7.0 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Pierre Lannoy / PerfOps One DecaLog plugin = 3.7.0 versions...
CVE-2023-27444 WordPress DecaLog Plugin <= 3.7.0 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Pierre Lannoy / PerfOps One DecaLog plugin = 3.7.0 versions...
CVE-2023-27444 WordPress DecaLog Plugin <= 3.7.0 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Pierre Lannoy / PerfOps One DecaLog plugin = 3.7.0 versions...
CVE-2023-27444
CVE-2023-27444 affects the DecaLog WordPress plugin (
WordPress Plugin DecaLog Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...
WordPress DecaLog Plugin <= 3.7.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software DecaLog Type Plugin Vulnerable versions = 3.7.0 Fixed in 3.7.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-27444 Patch priority Low CVSS severity Low 4.3 Developer PerfOps One PSID 721ad967e10d Credits Mika Required privilege...
senlis.prod-osiros.decalog.net Cross Site Scripting vulnerability OBB-2773717
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...