EUVD-2025-7721

Malicious code in bioql PyPI...

EUVD-2025-7723

Malicious code in bioql PyPI...

CVE-2025-26961

Missing Authorization vulnerability in FRESHFACE Fresh Framework fresh-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Fresh Framework: from n/a through = 1.70.0...

CVE-2025-26961

Missing Authorization vulnerability in FRESHFACE Fresh Framework fresh-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Fresh Framework: from n/a through = 1.70.0...

CVE-2025-26961

CVE-2025-26961 affects the WordPress plugin “Fresh Framework” (versions up to 1.70.0). The issue is a Missing Authorization vulnerability that allows accessing functionality not properly constrained by ACLs due to inadequate authorization checks. The CVE describes unauthenticated access with high...

CVE-2025-26961 WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in FRESHFACE Fresh Framework fresh-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Fresh Framework: from n/a through = 1.70.0...

CVE-2025-26961 WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in FRESHFACE Fresh Framework fresh-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Fresh Framework: from n/a through = 1.70.0...

WordPress plugin Fresh Framework 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2025-26936

Improper Control of Generation of Code 'Code Injection' vulnerability in FRESHFACE Fresh Framework fresh-framework allows Code Injection.This issue affects Fresh Framework: from n/a through = 1.70.0...

CVE-2025-26936

Improper Control of Generation of Code 'Code Injection' vulnerability in FRESHFACE Fresh Framework fresh-framework allows Code Injection.This issue affects Fresh Framework: from n/a through = 1.70.0...

CVE-2025-26936 WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in FRESHFACE Fresh Framework fresh-framework allows Code Injection.This issue affects Fresh Framework: from n/a through = 1.70.0...

CVE-2025-26936 WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in FRESHFACE Fresh Framework fresh-framework allows Code Injection.This issue affects Fresh Framework: from n/a through = 1.70.0...

CVE-2025-26936

CVE-2025-26936 is linked to the WordPress Fresh Framework plugin (versions up to 1.70.0). Multiple connected sources confirm an Unauthenticated Remote Code Execution (RCE) vulnerability arising from improper control/generation of code, enabling code injection by unauthenticated attackers. The iss...

WordPress plugin Fresh Framework 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...

WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Remote Code Execution (RCE) vulnerability

Unauthenticated Remote Code Execution RCE vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Fresh Framework versions = 1.70.0...

WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Fresh Framework versions = 1.70.0...

PT-2025-10595

Name of the Vulnerable Software and Affected Versions Fresh Framework versions 1.70.0 and earlier Description The issue is related to an Improper Control of Generation of Code 'Code Injection' vulnerability, which allows Code Injection. Recommendations For versions 1.70.0 and earlier, update to a...