18 matches found
📄 WordPress Highlight and Share 5.2.0 Missing Authentication
WordPress Highlight and Share plugin versions 5.2.0 and below suffers from a missing authentication vulnerability. Exploit Title: WordPress Plugin 5.2.0 - Broken Access Control Date: 2025-09-20 Exploit Author: Zeeshan Haider Vendor Homepage: https://wordpress.org/plugins/ Software Link:...
WordPress Highlight and Share plugin <= 5.2.0 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Zeeshan Haider in WordPress Plugin Highlight and Share versions = 5.2.0...
CVE-2025-67586
Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...
EUVD-2025-202067
Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...
CVE-2025-67586
Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...
CVE-2025-67586 WordPress Highlight and Share plugin <= 5.2.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...
CVE-2025-67586
CVE-2025-67586 corresponds to a Missing Authorization vulnerability in the WordPress plugin Highlight and Share (highlight-and-share). Public details in connected docs confirm affected software: Highlight and Share (WordPress plugin) vulnerable up to version 5.2.0. The CVE has CVSS v3.1 base scor...
WordPress plugin Highlight and Share 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
PT-2025-49960
Name of the Vulnerable Software and Affected Versions Ronald Huereca Highlight and Share versions through 5.2.0 Description A missing authorization issue exists in Ronald Huereca Highlight and Share, allowing exploitation of incorrectly configured access control security levels. Recommendations...
EUVD-2025-30569
Malicious code in bioql PyPI...
CVE-2025-58260
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
CVE-2025-58260
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Highlight and Share versions = 5.1.1...
CVE-2025-58260 WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
CVE-2025-58260
CVE-2025-58260 describes a Stored XSS vulnerability in the WordPress plugin Highlight and Share – Social Text and Image Sharing. The entry notes a Cross-Site Scripting issue via improper input neutralization in web page generation, affecting Highlight and Share from version n/a up to 5.1.1. The p...
CVE-2025-58260 WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...
PT-2025-38923
Name of the Vulnerable Software and Affected Versions Ronald Huereca Highlight and Share – Social Text and Image Sharing versions through 5.1.1 Description The software contains a flaw related to improper neutralization of input during web page generation, which allows for Stored Cross-site...
WordPress plugin Highlight and Share – Social Text and Image Sharing 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...