13 matches found
WordPress Plugin Portfolio and Projects Information Disclosure Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin Portfolio and Projects,...
CVE-2025-67470
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through = 1.5.5...
EUVD-2025-202134
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through = 1.5.5...
CVE-2025-67470
CVE-2025-67470 is a WordPress plugin vulnerability in the Portfolio and Projects (portfolio-and-projects) plugin, affecting versions
CVE-2025-67470 WordPress Portfolio and Projects plugin <= 1.5.5 - Sensitive Data Exposure vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through = 1.5.5...
WordPress plugin Portfolio and Projects 安全漏洞
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin Portfolio and Projects,...
EUVD-2023-43688
Malicious code in bioql PyPI...
CVE-2024-13847
CVE-2024-13847 (Red Hat RH advisory) concerns a stored XSS vulnerability in the WordPress Portfolio and Projects plugin, affecting all versions up to 1.5.3. It requires authenticated administrators (Administrator-level) and affects multisite installs or sites with unfiltered_html disabled. The pu...
CVE-2024-13847
...
CVE-2023-39995
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Portfolio and Projects portfolio-and-projects allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Portfolio and Projects: from n/a through = 1.3.7...
WordPress plugin Portfolio and Projects 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2024-12828 · Unknown +1 · Essential Plugin Portfolio/Projects +2
Name of the Vulnerable Software and Affected Versions: WP OnlineSupport, Essential Plugin Portfolio and Projects versions 1.3.7 and earlier Description: The issue affects the Portfolio and Projects plugin for WordPress, involving broken access control due to missing authorization. This allows for...
WordPress Portfolio and Projects Plugin <= 1.3.7 is vulnerable to Broken Access Control
Software Portfolio and Projects Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-40200 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 4fd5786d3c57 Credits Abdi Pranata Required...