18 matches found
EUVD-2025-3887
Malicious code in bioql PyPI...
EUVD-2024-26141
Malicious code in bioql PyPI...
EUVD-2023-27982
Malicious code in bioql PyPI...
CVE-2025-24695
Server-Side Request Forgery SSRF vulnerability in HT Plugins Extensions For CF7 extensions-for-cf7 allows Server Side Request Forgery.This issue affects Extensions For CF7: from n/a through = 3.2.0...
CVE-2023-23899
Cross-Site Request Forgery CSRF vulnerability in HasThemes Extensions For CF7 plugin = 2.0.8 versions leads to arbitrary plugin activation...
CVE-2024-29102
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes Extensions For CF7 allows Stored XSS.This issue affects Extensions For CF7: from n/a through 3.0.6...
CVE-2025-24695
Server-Side Request Forgery SSRF vulnerability in HT Plugins Extensions For CF7 extensions-for-cf7 allows Server Side Request Forgery.This issue affects Extensions For CF7: from n/a through = 3.2.0...
CVE-2025-24695
Server-Side Request Forgery SSRF vulnerability in HasThemes Extensions For CF7 allows Server Side Request Forgery. This issue affects Extensions For CF7: from n/a through 3.2.0...
PT-2025-5511 · Unknown · Hasthemes Extensions For Cf7
Name of the Vulnerable Software and Affected Versions: HasThemes Extensions For CF7 versions 3.2.0 and earlier Description: The issue is a Server-Side Request Forgery SSRF vulnerability, which allows an attacker to perform Server Side Request Forgery. Recommendations: For versions 3.2.0 and...
CVE-2024-29102
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes Extensions For CF7 allows Stored XSS.This issue affects Extensions For CF7: from n/a through 3.0.6...
CVE-2024-29102 WordPress Extensions For CF7 plugin <= 3.0.6 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes Extensions For CF7 allows Stored XSS.This issue affects Extensions For CF7: from n/a through 3.0.6...
CVE-2024-29102 WordPress Extensions For CF7 plugin <= 3.0.6 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes Extensions For CF7 allows Stored XSS.This issue affects Extensions For CF7: from n/a through 3.0.6...
PT-2024-22722
Name of the Vulnerable Software and Affected Versions HasThemes Extensions For CF7 versions 3.0.6 and earlier Description The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject...
CVE-2023-23899
Cross-Site Request Forgery CSRF vulnerability in HasThemes Extensions For CF7 plugin = 2.0.8 versions leads to arbitrary plugin activation...
CVE-2023-23899
Cross-Site Request Forgery CSRF vulnerability in HasThemes Extensions For CF7 plugin = 2.0.8 versions leads to arbitrary plugin activation...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in HasThemes Extensions For CF7 plugin = 2.0.8 versions leads to arbitrary plugin activation...
CVE-2023-23899
CVE-2023-23899 affects the WordPress plugin Extensions For CF7 (HasThemes Extensions For CF7) up to version 2.0.8. Root cause: Cross-Site Request Forgery (CSRF) allows unauthenticated attackers to trigger arbitrary plugin activation. Affects versions
PT-2023-19289 · Unknown · Hasthemes Extensions For Cf7
Name of the Vulnerable Software and Affected Versions: HasThemes Extensions For CF7 plugin versions = 2.0.8 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability, which can lead to arbitrary plugin activation. This means an attacker could potentially activate any...