Lucene search
+L

85 matches found

EUVD
EUVD
added 2025/10/25 9:32 a.m.9 views

EUVD-2025-35924

The Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions plugin for WordPress is vulnerable to SQL Injection via the 'wpfs-form-name' parameter in all versions up to, and including, 8.3.1 due to insufficient escaping on the user supplied parameter and lack ...

7.5CVSS6.3AI score0.00317EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/25 6:49 a.m.14 views

CVE-2025-9322 Stripe Payment Forms <= 8.3.1 - Unauthenticated SQL Injection

The Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions plugin for WordPress is vulnerable to SQL Injection via the 'wpfs-form-name' parameter in all versions up to, and including, 8.3.1 due to insufficient escaping on the user supplied parameter and lack ...

7.5CVSS0.00317EPSS
Exploits0References2
CVE
CVE
added 2025/10/25 6:49 a.m.37 views

CVE-2025-9322

CVE-2025-9322 : WordPress plugin Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions (up to and including 8.3.1) is vulnerable to unauthenticated SQL Injection via the wpfs-form-name parameter. The issue arises from insufficient escaping of the user-suppli...

7.5CVSS6.4AI score0.00317EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/25 12:0 a.m.10 views

PT-2025-43728

Name of the Vulnerable Software and Affected Versions Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions plugin for WordPress versions up to and including 8.3.1 Description The Stripe Payment Forms plugin for WordPress is susceptible to SQL Injection due ...

7.5CVSS7AI score0.00317EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-22461

Malicious code in bioql PyPI...

6.5CVSS7.2AI score0.00419EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-30311

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00437EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-29951

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00291EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.21 views

EUVD-2025-8462

Malicious code in bioql PyPI...

7.6CVSS9.1AI score0.00775EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-28409

Malicious code in bioql PyPI...

8.5CVSS8.6AI score0.00488EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:16 a.m.21 views

CVE-2024-32130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paystack Payment Forms for Paystack allows Stored XSS.This issue affects Payment Forms for Paystack: from n/a through 3.4.1...

6.5CVSS5.2AI score0.00291EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:16 a.m.10 views

CVE-2024-32509

Missing Authorization vulnerability in Loopus WP Cost Estimation & Payment Forms Builder.This issue affects WP Cost Estimation & Payment Forms Builder: from n/a through 10.1.76...

6.5CVSS5.2AI score0.00437EPSS
Exploits0References1
Wordfence Blog
Wordfence Blog
added 2025/05/21 4:31 p.m.12 views

Sophisticated & Stealthy Formjacking Malware Targets E-Commerce Checkout Pages

📢In case you missed it, Wordfence just published itsannual WordPress security report for 2024. Read it now to learn more about the evolving risk landscape of WordPress so you can keep your sites protected in 2025 and beyond. The Wordfence Threat Intelligence team recently uncovered a sophisticate...

6.9AI score
Exploits0
CNNVD
CNNVD
added 2025/04/10 12:0 a.m.7 views

WordPress plugin Payment Forms for Paystack 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

6.4CVSS6.7AI score0.00311EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/04/09 10:13 p.m.6 views

WordPress Payment Forms for Paystack plugin <= 4.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Peter Thaleikis in WordPress Plugin Payment Forms for Paystack versions = 4.0.2...

6.4CVSS6.3AI score0.00311EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/29 3:19 p.m.18 views

CVE-2025-22652

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kendysond Payment Forms for Paystack payment-forms-for-paystack allows SQL Injection.This issue affects Payment Forms for Paystack: from n/a through = 4.0.1...

7.6CVSS7.3AI score0.00775EPSS
Exploits1References1
NVD
NVD
added 2025/03/27 3:15 p.m.14 views

CVE-2025-22652

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kendysond Payment Forms for Paystack payment-forms-for-paystack allows SQL Injection.This issue affects Payment Forms for Paystack: from n/a through = 4.0.1...

7.6CVSS0.00775EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/27 3:4 p.m.22 views

CVE-2025-22652 WordPress Payment Forms for Paystack plugin <= 4.0.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kendysond Payment Forms for Paystack payment-forms-for-paystack allows SQL Injection.This issue affects Payment Forms for Paystack: from n/a through = 4.0.1...

7.6CVSS0.00775EPSS
Exploits1References1
CVE
CVE
added 2025/03/27 3:4 p.m.50 views

CVE-2025-22652

CVE-2025-22652 is a SQL Injection vulnerability in the WordPress plugin Payment Forms for Paystack (vulnerable up to and including 4.0.1). The root cause, as detailed in the exploit repo, is unsafely inserting a URL parameter (order) directly into an SQL query without input validation/escaping in...

7.6CVSS7.3AI score0.00775EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/27 3:4 p.m.11 views

CVE-2025-22652 WordPress Payment Forms for Paystack plugin <= 4.0.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kendysond Payment Forms for Paystack allows SQL Injection.This issue affects Payment Forms for Paystack: from n/a through 4.0.1...

7.6CVSS7.9AI score0.00775EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2025/02/04 5:39 a.m.333 views

Exploit for CVE-2025-22652

CVE-2025-22652 1️⃣ Component type WordPress plugin 2️...

7.6CVSS9.9AI score0.00775EPSS
Exploits1
Rows per page
Query Builder