22 matches found
EUVD-2024-36496
Malicious code in bioql PyPI...
EUVD-2024-36497
Malicious code in bioql PyPI...
CVE-2024-13637
The Demo Awesome plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the installplugin function in all versions up to, and including, 1.0.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...
CVE-2024-13637
The Demo Awesome plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the installplugin function in all versions up to, and including, 1.0.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...
CVE-2024-13637 Demo Awesome <= 1.0.3 - Missing Authorization to Authenticated (Subscriber+) Plugin Activation
The Demo Awesome plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the installplugin function in all versions up to, and including, 1.0.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...
WordPress plugin Demo Awesome 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exis...
CVE-2024-37207
Missing Authorization vulnerability in Theme4Press Demo Awesome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Demo Awesome: from n/a through 1.0.2...
CVE-2024-37207
CVE-2024-37207 affects Theme4Press Demo Awesome (WordPress plugin) up to version 1.0.2. Described as a Missing Authorization / Broken Access Control vulnerability due to incorrectly configured access levels, enabling unauthorized access to restricted functionality. Affected range: n/a through 1.0...
CVE-2024-37207 WordPress Demo Awesome plugin <= 1.0.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Theme4Press Demo Awesome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Demo Awesome: from n/a through 1.0.2...
CVE-2024-37207 WordPress Demo Awesome plugin <= 1.0.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Theme4Press Demo Awesome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Demo Awesome: from n/a through 1.0.2...
PT-2024-27375 · Unknown · Theme4Press Demo Awesome
Name of the Vulnerable Software and Affected Versions: Theme4Press Demo Awesome versions 1.0.2 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For Theme4Press De...
WordPress plugin Demo Awesome 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
CVE-2024-37206
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Theme4Press Demo Awesome allows Reflected XSS.This issue affects Demo Awesome: from n/a through 1.0.1...
CVE-2024-37206
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Theme4Press Demo Awesome allows Reflected XSS.This issue affects Demo Awesome: from n/a through 1.0.1...
CVE-2024-37206 WordPress Demo Awesome plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Theme4Press Demo Awesome allows Reflected XSS.This issue affects Demo Awesome: from n/a through 1.0.1...
CVE-2024-37206 WordPress Demo Awesome plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Theme4Press Demo Awesome allows Reflected XSS.This issue affects Demo Awesome: from n/a through 1.0.1...
CVE-2024-37206
CVE-2024-37206 is a reflected Cross-Site Scripting (XSS) vulnerability in the Theme4Press Demo Awesome WordPress plugin. It affects Demo Awesome versions up to 1.0.1 (exact vulnerable range shown as from n/a through 1.0.1). The issue is triggered during web page generation via improper input neut...
PT-2024-27374 · Unknown · Theme4Press Demo Awesome
Name of the Vulnerable Software and Affected Versions: Theme4Press Demo Awesome versions 1.0.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For...
WordPress Demo Awesome plugin <= 1.0.2 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Demo Awesome versions = 1.0.2...
WordPress Demo Awesome plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Demo Awesome versions = 1.0.1...