447 matches found
CVE-2025-15005 CouchCMS reCAPTCHA config.example.php hard-coded key
A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the file couch/config.example.php of the component reCAPTCHA Handler. The manipulation of the argument KRECAPTCHASITEKEY/KRECAPTCHASECRETKEY results in use of hard-coded cryptographic key . It is possibl...
EUVD-2025-204679
A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the file couch/config.example.php of the component reCAPTCHA Handler. The manipulation of the argument KRECAPTCHASITEKEY/KRECAPTCHASECRETKEY results in use of hard-coded cryptographic key . It is possibl...
CVE-2025-15005 CouchCMS reCAPTCHA config.example.php hard-coded key
A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the file couch/config.example.php of the component reCAPTCHA Handler. The manipulation of the argument KRECAPTCHASITEKEY/KRECAPTCHASECRETKEY results in use of hard-coded cryptographic key . It is possibl...
CVE-2025-15005
CVE-2025-15005 affects CouchCMS up to 2.4. The vulnerability is in the reCAPTCHA Handler, specifically the couch/config.example.php file; manipulating K_RECAPTCHA_SITE_KEY/K_RECAPTCHA_SECRET_KEY can lead to use of a hard-coded cryptographic key. It is remotely exploitable, with high complexity, a...
Webzyme CouchCMS 安全漏洞
Webzyme CouchCMS is a content management system from Webzyme India. A security vulnerability exists in Webzyme CouchCMS 2.4 and earlier versions, which stems from the use of hard-coded encryption keys in the file couch/config.example.php in the component reCAPTCHA Handler, which could lead to a...
PT-2025-52618
Name of the Vulnerable Software and Affected Versions CouchCMS versions up to 2.4 Description A security issue exists in CouchCMS related to the reCAPTCHA Handler component. The issue resides in an unknown function within the couch/config.example.php file. Manipulation of the arguments K RECAPTCH...
CVE-2023-23729
The CVE-2023-23729 issue affects Brainstorm Force Spectra (WordPress Gutenberg Blocks plugin) versions up to 2.3.0, caused by missing/incorrect authorization in access control settings. Multiple sources (Patchstack, NVD-driven entries, EUVD, Red Hat) describe this as a Broken Access Control vulne...
CVE-2023-23729 WordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Contributor+ reCAPTCHA Settings Change Vulnerability
Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0...
CVE-2023-23729 WordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Contributor+ reCAPTCHA Settings Change Vulnerability
Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.3.0...
CVE-2025-10732
The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Sensitive Information Disclosure in all versions up to, and including, 1.12.1. This is due to improper access control implementation on the '/wp-json/sureforms/v1/srfm-global-settings' REST API endpoint...
CVE-2025-10732
The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Sensitive Information Disclosure in all versions up to, and including, 1.12.1. This is due to improper access control implementation on the '/wp-json/sureforms/v1/srfm-global-settings' REST API endpoint...
EUVD-2025-34138
The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Sensitive Information Disclosure in all versions up to, and including, 1.12.1. This is due to improper access control implementation on the '/wp-json/sureforms/v1/srfm-global-settings' REST API endpoint...
CVE-2025-10732 SureForms – Drag and Drop Form Builder for WordPress <= 1.12.1 - Missing Authorization to Authenticated (Contributor+) Information Disclosure
The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Sensitive Information Disclosure in all versions up to, and including, 1.12.1. This is due to improper access control implementation on the '/wp-json/sureforms/v1/srfm-global-settings' REST API endpoint...
EUVD-2021-25723
Malware in sbrugna...
EUVD-2011-0771
Malware in sbrugna...
EUVD-2018-13536
Malware in sbrugna...
EUVD-2022-43171
Malicious code in bioql PyPI...
EUVD-2025-10615
Malicious code in bioql PyPI...
EUVD-2024-32507
Malicious code in bioql PyPI...
EUVD-2025-7554
Malicious code in bioql PyPI...