WordPress IdeaPush plugin <= 8.71 - Missing Authorization to Board Term Deletion vulnerability

Missing Authorization to Board Term Deletion vulnerability discovered by Lucio Sá in WordPress Plugin IdeaPush versions = 8.71...

EUVD-2023-51314

Malicious code in bioql PyPI...

EUVD-2024-40823

Malicious code in bioql PyPI...

EUVD-2023-52807

Malicious code in bioql PyPI...

EUVD-2024-43341

Malicious code in bioql PyPI...

EUVD-2024-36681

Malicious code in bioql PyPI...

EUVD-2025-3811

Malicious code in bioql PyPI...

EUVD-2024-36544

Malicious code in bioql PyPI...

CVE-2024-44041

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Northern Beaches Websites IdeaPush ideapush allows Stored XSS.This issue affects IdeaPush: from n/a through = 8.66...

CVE-2024-49275

Cross-Site Request Forgery CSRF vulnerability in Northern Beaches Websites IdeaPush ideapush allows Cross Site Request Forgery.This issue affects IdeaPush: from n/a through = 8.69...

CVE-2024-11844

The IdeaPush plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ideapushtaxonomysaveroutine function in all versions up to, and including, 8.71. This makes it possible for authenticated attackers, with Subscriber-level access and above...

CVE-2024-37265

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.60...

CVE-2023-47181

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson IdeaPush plugin = 8.52 versions...

CVE-2023-48774

Missing Authorization vulnerability in Martin Gibson IdeaPush allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IdeaPush: from n/a through n/a...

CVE-2025-24607

Missing Authorization vulnerability in Northern Beaches Websites IdeaPush ideapush allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IdeaPush: from n/a through = 8.71...

CVE-2025-24607

Missing Authorization vulnerability in Northern Beaches Websites IdeaPush allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects IdeaPush: from n/a through 8.71...

CVE-2025-24607

Missing Authorization vulnerability in Northern Beaches Websites IdeaPush ideapush allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IdeaPush: from n/a through = 8.71...

CVE-2025-24607 WordPress IdeaPush plugin <= 8.71 - Broken Access Control vulnerability

Missing Authorization vulnerability in Northern Beaches Websites IdeaPush ideapush allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IdeaPush: from n/a through = 8.71...

CVE-2025-24607 WordPress IdeaPush plugin <= 8.71 - Broken Access Control vulnerability

Missing Authorization vulnerability in Northern Beaches Websites IdeaPush ideapush allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IdeaPush: from n/a through = 8.71...

CVE-2025-24607

The CVE-2025-24607 entry covers a Missing Authorization vulnerability in the WordPress IdeaPush plugin (versions up to 8.71). The underlying issue is broken access control due to misconfigured access levels, enabling exploitation over the network with high impact. Affected product: WordPress Idea...