15 matches found
CVE-2026-32344
Cross-Site Request Forgery CSRF vulnerability in desertthemes Corpiva corpiva allows Cross Site Request Forgery.This issue affects Corpiva: from n/a through = 1.0.96...
EUVD-2026-11829
Cross-Site Request Forgery CSRF vulnerability in desertthemes Corpiva corpiva allows Cross Site Request Forgery.This issue affects Corpiva: from n/a through = 1.0.96...
CVE-2026-32344
Cross-Site Request Forgery CSRF vulnerability in desertthemes Corpiva corpiva allows Cross Site Request Forgery.This issue affects Corpiva: from n/a through = 1.0.96...
CVE-2026-32344
Cross-Site Request Forgery CSRF vulnerability in desertthemes Corpiva corpiva allows Cross Site Request Forgery.This issue affects Corpiva: from n/a through = 1.0.96...
CVE-2024-56208
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in desertthemes NewsMash newsmash allows Stored XSS.This issue affects NewsMash: from n/a through = 1.0.71...
EUVD-2025-26960
Malicious code in bioql PyPI...
EUVD-2024-36927
Malicious code in bioql PyPI...
CVE-2025-58817
Missing Authorization vulnerability in desertthemes SoftMe softme allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SoftMe: from n/a through = 1.1.27...
CVE-2025-58817
Missing Authorization vulnerability in desertthemes SoftMe softme allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SoftMe: from n/a through = 1.1.27...
CVE-2025-58817
CVE-2025-58817 describes a Missing Authorization (Broken Access Control) vulnerability in DesertThemes SoftMe WordPress Theme, affecting versions up to 1.1.24. Root cause is incorrectly configured access control; impact is limited to exposure due to authorization gaps (CVSSv3.1/3.1 base 4.3, Medi...
PT-2025-36156
Name of the Vulnerable Software and Affected Versions: SoftMe versions through 1.1.24 Description: A missing authorization flaw exists in DesertThemes SoftMe, allowing exploitation due to incorrectly configured access control security levels. Recommendations: Update SoftMe to a version beyond...
CVE-2024-37441
Cross-Site Request Forgery CSRF vulnerability in desertthemes NewsMash newsmash allows Cross Site Request Forgery.This issue affects NewsMash: from n/a through = 1.0.34...
CVE-2024-37441
Cross-Site Request Forgery CSRF vulnerability in desertthemes NewsMash newsmash allows Cross Site Request Forgery.This issue affects NewsMash: from n/a through = 1.0.34...
CVE-2024-37441
CVE-2024-37441 is a CSRF vulnerability in DesertThemes NewsMash (WordPress theme). Affected are NewsMash versions n/a through 1.0.34. The issue enables CSRF; connected sources indicate the vulnerability has been patched in NewsMash, but no fixed version is specified in the provided documents. No ...
PT-2025-2484 · Desertthemes · Newsmash
Name of the Vulnerable Software and Affected Versions: DesertThemes NewsMash versions 1.0.0 through 1.0.34 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. Recommendations: For versions 1.0.0...