5 matches found
WordPress plugin Frontend Admin by DynamiApps 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...
EUVD-2025-27182
Malicious code in bioql PyPI...
CVE-2025-58746 Volkov Labs Business Links plugin vulnerable to privilege escalation attack
The Volkov Labs Business Links panel for Grafana provides an interface to navigate using external links, internal dashboards, time pickers, and dropdown menus. Prior to version 2.4.0, a malicious actor with Editor privileges can escalate their privileges to Administrator and perform arbitrary...
Backdrop CMS 1.29.2 Cross Site Scripting / Cross Site Request Forgery
Backdrop CMS version 1.29.2 remote exploit that chains a persistent cross site scripting vulnerability with a cross site request forgery payload to achieve privilege escalation form the role of Editor to Administrator...
PortlandLabs Concrete CMS 安全漏洞
PortlandLabs Concrete Cms is a team-oriented open source content management system from PortlandLabs, Inc. PortlandLabs Concrete CMS is vulnerable to an elevation of privilege vulnerability that could be exploited by an attacker to elevate privileges from editor to administrator...