82 matches found
EUVD-2025-13849
Malicious code in bioql PyPI...
EUVD-2023-31232
Malicious code in bioql PyPI...
CVE-2025-59561
Missing Authorization vulnerability in hashthemes Smart Blocks smart-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart Blocks: from n/a through = 2.4...
PT-2025-39039
Name of the Vulnerable Software and Affected Versions Smart Blocks versions through 2.4 Description A missing authorization issue exists in hashthemes Smart Blocks due to incorrectly configured access control security levels. This allows exploitation of the system. Recommendations Update Smart...
CVE-2025-54712
Missing Authorization vulnerability in hashthemes Easy Elementor Addons easy-elementor-addons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Elementor Addons: from n/a through = 2.2.7...
CVE-2025-54704
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Easy Elementor Addons easy-elementor-addons allows DOM-Based XSS.This issue affects Easy Elementor Addons: from n/a through = 2.2.6...
CVE-2025-54704
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Easy Elementor Addons easy-elementor-addons allows DOM-Based XSS.This issue affects Easy Elementor Addons: from n/a through = 2.2.6...
CVE-2025-54704 WordPress Easy Elementor Addons plugin <= 2.2.6 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Easy Elementor Addons easy-elementor-addons allows DOM-Based XSS.This issue affects Easy Elementor Addons: from n/a through = 2.2.6...
CVE-2025-54704
CVE-2025-54704 is a DOM-based XSS vulnerability in the WordPress plugin Easy Elementor Addons (versions up to 2.2.6). The root cause is improper neutralization of user input during web page generation, enabling DOM-based cross-site scripting. Public sources confirm affected software as Easy Eleme...
PT-2025-33256 · WordPress · Easy Addons For Elementor
Name of the Vulnerable Software and Affected Versions: hashthemes Easy Elementor Addons versions through 2.2.6 Description: The software contains a DOM-Based Cross-site Scripting XSS issue due to improper neutralization of input during web page generation. Recommendations: Update hashthemes Easy...
WordPress Easy Elementor Addons plugin <= 2.2.6 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Abu Hurayra in WordPress Plugin Easy Elementor Addons versions = 2.2.6...
WordPress Easy Elementor Addons plugin <= 2.2.5 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by stealthcopter in WordPress Plugin Easy Elementor Addons versions = 2.2.5...
PT-2025-29729 · Elementor +1 · Elementor +1
Name of the Vulnerable Software and Affected Versions: hashthemes Easy Elementor Addons versions through 2.2.5 Description: The software contains a cross-site scripting issue due to improper neutralization of input during web page generation. This allows for stored cross-site scripting attacks...
CVE-2025-22296
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Hash Elements hash-elements.This issue affects Hash Elements: from n/a through = 1.5.0...
CVE-2024-49270
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Smart Blocks smart-blocks allows Stored XSS.This issue affects Smart Blocks: from n/a through = 2.0...
CVE-2024-30426
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HashThemes Hash Elements allows Stored XSS.This issue affects Hash Elements: from n/a through 1.3.3...
CVE-2023-27456
Missing Authorization vulnerability in HashThemes Total allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Total: from n/a through 2.1.19...
CVE-2023-30486
Missing Authorization vulnerability in HashThemes Square allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Square: from n/a through 2.0.0...
CVE-2023-33923
Missing Authorization vulnerability in HashThemes Viral News, HashThemes Viral, HashThemes HashOne.This issue affects Viral News: from n/a through 1.4.5; Viral: from n/a through 1.8.0; HashOne: from n/a through 1.3.0...
CVE-2023-28990
Missing Authorization vulnerability in HashThemes Viral Mag allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Viral Mag: from n/a through 1.0.9...