15 matches found
EUVD-2025-28507
Malicious code in bioql PyPI...
EUVD-2025-31415
Malicious code in bioql PyPI...
CVE-2025-9896
The HidePost plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3.8. This is due to missing or incorrect nonce validation on the options.php settings page. This makes it possible for unauthenticated attackers to modify plugin settings via a...
CVE-2025-9896
The HidePost plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3.8. This is due to missing or incorrect nonce validation on the options.php settings page. This makes it possible for unauthenticated attackers to modify plugin settings via a...
CVE-2025-9896 HidePost <= 2.3.8 - Cross-Site Request Forgery
The HidePost plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3.8. This is due to missing or incorrect nonce validation on the options.php settings page. This makes it possible for unauthenticated attackers to modify plugin settings via a...
CVE-2025-9896 HidePost <= 2.3.8 - Cross-Site Request Forgery
The HidePost plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3.8. This is due to missing or incorrect nonce validation on the options.php settings page. This makes it possible for unauthenticated attackers to modify plugin settings via a...
CVE-2025-9896
CVE-2025-9896 – HidePost (WordPress) : WordPress HidePost plugin is vulnerable to Cross-Site Request Forgery due to missing or improper nonce validation on the options.php settings page. This allows an unauthenticated attacker to induce a site administrator to perform a forged action, potentially...
PT-2025-39715
Name of the Vulnerable Software and Affected Versions HidePost plugin for WordPress versions prior to 2.3.9 Description The software is susceptible to Cross-Site Request Forgery CSRF due to missing or incorrect nonce validation on the options.php settings page. This allows unauthenticated attacke...
WordPress plugin HidePost 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site...
CVE-2025-53310
Cross-Site Request Forgery CSRF vulnerability in Funnnny HidePost hidepost allows Reflected XSS.This issue affects HidePost: from n/a through = 2.3.8...
WordPress HidePost plugin <= 2.3.8 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin HidePost versions = 2.3.8...
CVE-2025-53310
Cross-Site Request Forgery CSRF vulnerability in Funnnny HidePost hidepost allows Reflected XSS.This issue affects HidePost: from n/a through = 2.3.8...
CVE-2025-53310 WordPress HidePost plugin <= 2.3.8 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in Funnnny HidePost allows Reflected XSS. This issue affects HidePost: from n/a through 2.3.8...
PT-2025-27208 · Hidepost · Hidepost
Name of the Vulnerable Software and Affected Versions: HidePost versions prior to 2.3.8 Description: A Cross-Site Request Forgery CSRF issue in HidePost allows for Reflected XSS. This means an attacker could potentially trick a user into performing unintended actions on the web application...
WordPress plugin HidePost 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...