14 matches found
EUVD-2023-56808
Malicious code in bioql PyPI...
EUVD-2024-29919
Malicious code in bioql PyPI...
CVE-2023-52134
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.0.2...
CVE-2024-54326
CVE-2024-54326 is a Missing Authorization vulnerability in GEO my WP for WordPress. Public details in the RH advisory indicate the flaw arises from incorrect access control in GEO my WP, affecting GEO my WP versions up to 4.5.0.4. The CVE entry notes an impact by allowing unauthorized access due ...
CVE-2024-54326 WordPress GEO my WP plugin <= 4.5.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in Eyal Fitoussi GEO my WordPress geo-my-wp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GEO my WordPress: from n/a through = 4.5.0.4...
CVE-2024-47327
CVE-2024-47327 is a reflected XSS in the GEO my WordPress plugin up to version 4.5.0.3 (unauthenticated). Public doc confirms impact is Reflected XSS and that a fix exists in 4.5.0.4. Recommendation: upgrade GEO my WP to 4.5.0.4 or later to remediate; no exploitation details are provided in the i...
CVE-2024-47327 WordPress GEO my WP plugin <= 4.5.0.3 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Eyal Fitoussi GEO my WordPress geo-my-wp allows Reflected XSS.This issue affects GEO my WordPress: from n/a through = 4.5.0.3...
CVE-2024-32097
Cross-Site Request Forgery CSRF vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.1...
CVE-2024-32097 WordPress GEO my WordPress plugin <= 4.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.1...
CVE-2023-52134
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.0.2...
CVE-2023-52134
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.0.2...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.0.2...
CVE-2023-52134 WordPress GEO my WordPress Plugin <= 4.0.2 is vulnerable to SQL Injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.0.2...
CVE-2023-52134
GEO my WordPress plugin (GEO my WordPress) is affected up to version 4.0.2 by an authenticated (Administrator+) SQL Injection (CVE-2023-52134). Root cause: "Improper Neutralization of Special Elements used in an SQL Command". The entry is reported as Patched ; monitor for any updates.