WordPress BCM Duplicate Menu Plugin <= 1.1.2 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin BCM Duplicate Menu versions = 1.1.2...

WordPress plugin BCM Duplicate Menu 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

WordPress plugin eDS Responsive Menu 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

PT-2025-36151

Name of the Vulnerable Software and Affected Versions: PriceListo Best Restaurant Menu by PriceListo versions through 1.4.3 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting XSS. Recommendations:...

PT-2025-36178

Name of the Vulnerable Software and Affected Versions: eDS Responsive Menu versions through 1.2 Description: A deserialization of untrusted data issue exists in eDS Responsive Menu, allowing object injection. This can occur due to the deserialization of untrusted data. Recommendations: At the...

PT-2025-36138

Name of the Vulnerable Software and Affected Versions: BCM Duplicate Menu versions through 1.1.2 Description: The software contains a Cross-Site Request Forgery CSRF flaw. This issue allows attackers to perform actions on behalf of authenticated users. Recommendations: Update BCM Duplicate Menu t...

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-48533

CVE-2025-48533 affects the Android Framework. A race condition in the lockscreen context menu can be exploited to perform local escalation of privilege by using apps linked from the context menu, without additional execution privileges or user interaction. The vulnerability is characterized as Eo...

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Akinsoft QR Menü Open Redirect Vulnerability

Akinsoft QR Menü is a digitized QR code menu system from Akinsoft Turkey. An open redirection vulnerability exists in Akinsoft QR Menü versions prior to s1.05.05 to v1.05.12. The vulnerability stems from the system's failure to reasonably handle target jumps, which can be exploited by an attacker...

Akinsoft QR Menü Cross-Site Request Forgery Vulnerability

Akinsoft QR Menü is a digitized QR code menu system from Akinsoft Turkey. Akinsoft QR Menü versions prior to s1.05.06 through v1.05.12 are vulnerable to a cross-site request forgery vulnerability that is caused by improper validation of user-supplied input. No detailed vulnerability details are...

Akinsoft QR Menü Cross-Site Scripting Vulnerability

Akinsoft QR Menü is a digitized QR code menu system from Akinsoft Turkey. Cross-site scripting vulnerability exists in Akinsoft QR Menü s versions prior to 1.05.05 to v1.05.12, no detailed vulnerability details are available at this time...

Akinsoft QR Menü Security Bypass Vulnerability

Akinsoft QR Menü is a digitized QR code menu system from Akinsoft Turkey. Akinsoft QR Menü s versions prior to 1.05.07 to v1.05.12 contain a security bypass vulnerability that can be exploited by attackers to cause authentication bypass...

CVE-2024-12925

Improper Validation of Certificate with Host Mismatch vulnerability in Akınsoft QR Menü allows HTTP Response Splitting. This issue affects QR Menü: from s1.05.05 before v1.05.12...

CVE-2025-2412

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft QR Menu allows Authentication Bypass. This issue affects QR Menu: from s1.05.07 before v1.05.12...

CVE-2024-12924

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Akınsoft QR Menü allows Forceful Browsing, Phishing. This issue affects QR Menü: from s1.05.05 before v1.05.12...

CVE-2024-12914

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Akınsoft QR Menü allows Cross-Site Scripting XSS. This issue affects QR Menü: from s1.05.05 before v1.05.12...

Malicious code in paper-dropdown-menu (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...