WordPress plugin bidorbuy Store Integrator 代码注入漏洞

WordPress bidorbuy Store Integrator plugin is a plugin for integrating WordPress websites with the Bidorbuy e-commerce platform, allowing users to quickly synchronize products to the Bidorbuy platform and automatically update product information. The WordPress bidorbuy Store Integrator plugin...

PT-2025-34990

Name of the Vulnerable Software and Affected Versions: extremeidea bidorbuy Store Integrator versions n/a through 2.12.0 Description: A Code Injection flaw exists in extremeidea bidorbuy Store Integrator, allowing for Remote Code Inclusion. This issue is due to improper control of code generation...

Linux Distros Unpatched Vulnerability : CVE-2025-0634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue affects rLottie: V0.2. CVE-2025-0634 Note that Nessus relies...

CVE-2025-48169

Improper Control of Generation of Code 'Code Injection' vulnerability in Jordy Meow Code Engine code-engine allows Remote Code Inclusion.This issue affects Code Engine: from n/a through = 0.3.3...

CVE-2025-53577

Improper Control of Generation of Code 'Code Injection' vulnerability in thehp Global DNS global-dns allows Remote Code Inclusion.This issue affects Global DNS: from n/a through = 3.1.0...

CVE-2025-53577

Improper Control of Generation of Code 'Code Injection' vulnerability in thehp Global DNS global-dns allows Remote Code Inclusion.This issue affects Global DNS: from n/a through = 3.1.0...

CVE-2025-48169

Improper Control of Generation of Code 'Code Injection' vulnerability in Jordy Meow Code Engine code-engine allows Remote Code Inclusion.This issue affects Code Engine: from n/a through = 0.3.3...

CVE-2025-48169

CVE-2025-48169 affects the WordPress Code Engine Plugin (versions ≤ 0.3.3). The issue is an Improper Control of Generation of Code that enables Remote Code Execution/Remote Code Inclusion. CVSS v3.1 vector: AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H with base score 9.9 (CRITICAL). Public references (Pat...

CVE-2025-48169 WordPress Code Engine Plugin <= 0.3.3 - Remote Code Execution (RCE) Vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Jordy Meow Code Engine allows Remote Code Inclusion. This issue affects Code Engine: from n/a through 0.3.3...

CVE-2025-48169 WordPress Code Engine Plugin <= 0.3.3 - Remote Code Execution (RCE) Vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Jordy Meow Code Engine code-engine allows Remote Code Inclusion.This issue affects Code Engine: from n/a through = 0.3.3...

CVE-2025-53577

CVE-2025-53577 : WordPress plugin Global DNS (versions up to 3.1.0) suffers an improper control of code generation leading to Remote Code Execution (RCE)/Remote Code Inclusion. The issue, described as a Code Injection vulnerability, is exploitable remotely over the network and is rated with a hig...

CVE-2025-53577 WordPress Global DNS Plugin <= 3.1.0 - Remote Code Execution (RCE) Vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in thehp Global DNS allows Remote Code Inclusion. This issue affects Global DNS: from n/a through 3.1.0...

WordPress plugin Code Engine 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin Global DNS 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2025-33925 · Unknown · Jordy Meow Code Engine

Name of the Vulnerable Software and Affected Versions: Jordy Meow Code Engine versions n/a through 0.3.3 Description: An improper control of generation of code 'Code Injection' vulnerability exists in Jordy Meow Code Engine, allowing for Remote Code Inclusion. Recommendations: Update Jordy Meow...

PT-2025-33988 · Thehp · Thehp Global Dns

Name of the Vulnerable Software and Affected Versions: thehp Global DNS versions n/a through 3.1.0 Description: Improper Control of Generation of Code 'Code Injection' in thehp Global DNS allows Remote Code Inclusion. Recommendations: Versions prior to 3.1.0 are affected...

CVE-2025-49887

Improper Control of Generation of Code 'Code Injection' vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Remote Code Inclusion.This issue affects Product XML Feed Manager for WooCommerce: from n/a through = 2.9.3...

CVE-2025-49887

Improper Control of Generation of Code 'Code Injection' vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Remote Code Inclusion.This issue affects Product XML Feed Manager for WooCommerce: from n/a through = 2.9.3...

CVE-2025-49887

CVE-2025-49887 is a WordPress plugin vulnerability: WPFactory Product XML Feed Manager for WooCommerce

WordPress plugin Product XML Feed Manager for WooCommerce 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...