CVE-2025-14481

The Yoast SEO plugin for WordPress is vulnerable to Insecure Direct Object References in all versions up to, and including, 26.5. This is due to insufficient authorization checks in the Meta Search REST API endpoint that fail to verify post ownership. This makes it possible for authenticated...

CVE-2025-14481

The Yoast SEO plugin for WordPress is vulnerable to Insecure Direct Object References in all versions up to, and including, 26.5. This is due to insufficient authorization checks in the Meta Search REST API endpoint that fail to verify post ownership. This makes it possible for authenticated...

WordPress plugin Yoast SEO 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

CVE-2025-64442

HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4...

CVE-2025-64442

HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4...

CVE-2025-64442 HumHub is vulnerable to XSS through its Meta Search component

HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4...

EUVD-2025-38326

HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4...

CVE-2025-64442

HumHub (Open Source Enterprise Social Network) versions before 1.17.4 are affected by a cross-site scripting (XSS) vulnerability in the Meta-Search feature, allowing malicious input to execute in search previews. The issue is fixed in version 1.17.4. Impact is consistent with XSS (information dis...

CVE-2025-64442 HumHub is vulnerable to XSS through its Meta Search component

HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4...

CVE-2025-64442 HumHub is vulnerable to XSS through its Meta Search component

HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4...

HumHub 跨站脚本漏洞

HumHub is the HumHub open source suite of open source social networking software written on the Yii PHP framework. A cross-site scripting vulnerability exists in HumHub versions prior to 1.17.4, which stems from a cross-site scripting vulnerability in the Meta-Search functionality that could caus...

EUVD-2007-2980

Malware in sbrugna...

CVE-2023-41055

LibreY is vulnerable to a Server-Side Request Forgery (SSRF) in the engines/google/text.php and engines/duckduckgo/text.php files for versions before commit be59098abd119cda70b15bf3faac596dfd39a744. The issue allows remote attackers to coerce the server into issuing HTTP GET requests to arbitrary...

CVE-2023-41054

CVE-2023-41054 affects LibreY, a LibreX fork, with a Server-Side Request Forgery in image_proxy.php prior to commit 8f9b9803f231e2954e5b49987a532d28fe50a627. The issue allows an attacker to use the server as a proxy to issue HTTP GET requests to arbitrary targets, access internal-network informat...

CVE-2023-41054 LibreY Server-Side Request Forgery (SSRF) vulnerability in image_proxy.php

LibreY is a fork of LibreX, a framework-less and javascript-free privacy respecting meta search engine. LibreY is subject to a Server-Side Request Forgery SSRF vulnerability in the imageproxy.php file of LibreY before commit 8f9b9803f231e2954e5b49987a532d28fe50a627. This vulnerability allows remo...

Torrentz.eu Shuts Down Forever! End of Biggest Torrent Search Engine

Over two weeks after the shutdown of Kickass Torrents and arrest of its admin in Poland, the world's biggest BitTorrent meta-search engine Torrentz.eu has apparently shut down its operation. The surprise shutdown of Torrentz marks the end of an era. Torrentz.eu was a free, fast and powerful...

k-search (sql/xss) Multiple Vulnerabilities

No description provided by source. Category: K-Search SQL/XSS Multiple Remote Vulnerabilities Download: http://turn-k.net/k-search/demo Dork: inurl:K-Search, Powered By K-Search Author: Sangteamtham at hcegroupdotnet Homepage: HCE group - bug-z0ne.info Info: K-Search provides you a quick and easy...

K-Search - SQL Injection Cross-Site Scripting

K-Search - SQL Injection Cross-Site Scripting Category: K-Search SQL/XSS Multiple Remote Vulnerabilities Download: http://turn-k.net/k-search/demo Dork: inurl:K-Search, Powered By K-Search Author: Sangteamtham at hcegroupdotnet Homepage: HCE group - bug-z0ne.info Info: K-Search provides you a qui...

K-Search (SQL/XSS) Multiple Remote Vulnerabilities

Exploit for php platform in category web applications ================================================== K-Search SQL/XSS Multiple Remote Vulnerabilities ================================================== Category: K-Search SQL/XSS Multiple Remote Vulnerabilities Download:...

MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion

MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion source: https://www.securityfocus.com/bid/43455/info MyDLstore Meta Search Engine Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this...