CVE-2026-25032

Deserialization of Untrusted Data vulnerability in parkofideas Ricky ricky allows Object Injection.This issue affects Ricky: from n/a through 2.31...

EUVD-2026-15632

Deserialization of Untrusted Data vulnerability in parkofideas Ricky ricky allows Object Injection.This issue affects Ricky: from n/a through 2.31...

CVE-2026-25032 WordPress Ricky theme < 2.31 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in parkofideas Ricky ricky allows Object Injection.This issue affects Ricky: from n/a through 2.31...

CVE-2026-25032

CVE-2026-25032 affects WordPress Ricky theme versions prior to 2.31. The issue is a Deserialization of Untrusted Data vulnerability that allows PHP Object Injection via the Ricky theme’s deserialization path. Current sources describe the affected component as the Ricky WordPress theme and indicat...

CVE-2026-25032 WordPress Ricky theme < 2.31 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in parkofideas Ricky ricky allows Object Injection.This issue affects Ricky: from n/a through 2.31...

WordPress plugin Ricky 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Versions...

PT-2026-27891

Name of the Vulnerable Software and Affected Versions Ricky versions prior to 2.31 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. Recommendations Update to version 2.31 or later...

WordPress Ricky theme < 2.31 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Ricky versions 2.31...

EUVD-2025-30695

Malicious code in bioql PyPI...

CVE-2025-57935

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ricky Dawn Bot Block – Stop Spam Referrals in Google Analytics bot-block-stop-spam-google-analytics-referrals allows Stored XSS.This issue affects Bot Block – Stop Spam Referrals in Google Analytic...

PT-2025-38785

Name of the Vulnerable Software and Affected Versions Ricky Dawn Bot Block – Stop Spam Referrals in Google Analytics versions through 2.6 Description The software contains a flaw related to improper input handling during web page generation, leading to a Cross-site Scripting XSS issue. This...

Malicious code in a-lbum-do-wnload-avai-lable-file-209382-ricky-music-5n2qv-tclmfr (npm)

The package a-lbum-do-wnload-avai-lable-file-209382-ricky-music-5n2qv-tclmfr was found to contain malicious code...

Zero-Day Remote 'Root' Exploit Disclosed In AT&T DirecTV WVB Devices

Security researchers have publicly disclosed an unpatched zero-day vulnerability in the firmware of AT&T DirecTV WVB kit after trying to get the device manufacturer to patch this easy-to-exploit flaw over the past few months. The problem is with a core component of the Genie DVR system that's...

President's personal mobile numbers published online by Anonymous Philippines Hackers

A Philippine Anonymous hacker "pR.is0n3r" has posted the President Benigno Aquino's three personal mobile telephone numbers online on facebook. Officials would not confirm if the numbers were really the President's. Aquino spokesman Ricky Carandang, "It's cyber vandalism plain and simple,"...

SA-CONTRIB-2012-119 - Excluded Users - Cross Site Scripting (XSS)

Excluded Users is a helper module which allows administrators to select users to not appear in user listings. The module displays a list of user names and email addresses without sanitizing them. In the event that someone manages to insert malicious code into a user name or email address, this...

Unfixed XSS vulnerability at www.drmelle.com

Security researcher Ricky, has submitted on 11/05/2008 a cross-site-scripting XSS vulnerability affecting www.drmelle.com, which at the time of submission ranked 13781795 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/05/2008. It is current...