WordPress Ohio Extra plugin cross-site scripting vulnerability

WordPress Ohio Extra plugin is a free WordPress plugin designed specifically for the OceanWP theme to enhance the theme functionality and improve the site building experience. WordPress Ohio Extra plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of...

WordPress Ohio Extra plugin <= 3.6.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Ohio Extra versions = 3.6.0...

CVE-2025-64365

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in colabrio Ohio Extra ohio-extra allows DOM-Based XSS.This issue affects Ohio Extra: from n/a through = 3.6.0...

EUVD-2025-37328

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in colabrio Ohio Extra ohio-extra allows DOM-Based XSS.This issue affects Ohio Extra: from n/a through = 3.6.0...

CVE-2025-64365

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in colabrio Ohio Extra ohio-extra allows DOM-Based XSS.This issue affects Ohio Extra: from n/a through = 3.6.0...

CVE-2025-64365 WordPress Ohio Extra plugin <= 3.6.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in colabrio Ohio Extra ohio-extra allows DOM-Based XSS.This issue affects Ohio Extra: from n/a through = 3.6.0...

CVE-2025-64365 WordPress Ohio Extra plugin <= 3.6.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in colabrio Ohio Extra ohio-extra allows DOM-Based XSS.This issue affects Ohio Extra: from n/a through = 3.6.0...

CVE-2025-64365

The CVE-2025-64365 entry concerns the WordPress Ohio Extra plugin (for OceanWP) with a DOM-Based XSS flaw present in versions

WordPress Plugin Ohio Extra 跨站脚本漏洞

WordPress Ohio Extra plugin is a free WordPress plugin designed specifically for the OceanWP theme to enhance the theme functionality and improve the site building experience. WordPress Ohio Extra plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of...

PT-2025-44616

Name of the Vulnerable Software and Affected Versions colabrio Ohio Extra versions through 3.6.0 Description The software contains a flaw related to improper input handling during web page generation, specifically a DOM-Based Cross-Site Scripting issue. This allows for the potential execution of...

EUVD-2025-7719

Malicious code in bioql PyPI...

CVE-2025-26924

Improper Control of Generation of Code 'Code Injection' vulnerability in colabrio Ohio Extra ohio-extra allows Code Injection.This issue affects Ohio Extra: from n/a through = 3.4.7...

CVE-2025-26924

Improper Control of Generation of Code 'Code Injection' vulnerability in colabrio Ohio Extra ohio-extra allows Code Injection.This issue affects Ohio Extra: from n/a through = 3.4.7...

CVE-2025-26924

The CVE-2025-26924 entry concerns WordPress Ohio Extra (and related NotFound Ohio Extra) with versions n/a through 3.4.7 affected by an Improper Generation of Code (Code Injection) due to shortcode handling. The vulnerability enables code injection via shortcodes. Public details confirm affected ...

WordPress plugin Ohio Extra 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...

PT-2025-11362

Name of the Vulnerable Software and Affected Versions: Ohio Extra versions n/a through 3.4.7 Description: The issue is related to an Improper Control of Generation of Code, also known as 'Code Injection', which allows for code injection in Ohio Extra. Recommendations: For versions n/a through...

WordPress Ohio Theme Extra plugin <= 3.4.7 - Shortcode Injection vulnerability

Shortcode Injection vulnerability discovered by Kursat Cetin Patchstack in WordPress Plugin Ohio Extra versions = 3.4.7...