60 matches found
EUVD-2025-8335
Malicious code in bioql PyPI...
EUVD-2025-17273
Malicious code in bioql PyPI...
EUVD-2025-10567
Malicious code in bioql PyPI...
EUVD-2025-30568
Malicious code in bioql PyPI...
EUVD-2025-13832
Malicious code in bioql PyPI...
CVE-2025-58235
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users front-end-only-users allows Stored XSS.This issue affects Front End Users: from n/a through = 3.2.35...
CVE-2025-58235
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users front-end-only-users allows Stored XSS.This issue affects Front End Users: from n/a through = 3.2.35...
CVE-2025-53454
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Ultimate WP Mail ultimate-wp-mail allows Stored XSS.This issue affects Ultimate WP Mail: from n/a through = 1.3.8...
PT-2025-38900
Name of the Vulnerable Software and Affected Versions Rustaurius Front End Users versions through 3.2.33 Description A flaw exists in Rustaurius Front End Users that allows for Stored Cross-site Scripting XSS. This issue arises from improper neutralization of input during web page generation...
PT-2025-38990
Name of the Vulnerable Software and Affected Versions Rustaurius Ultimate WP Mail versions through 1.3.8 Description The software contains a flaw related to improper input handling during web page generation, which can lead to Stored Cross-site Scripting XSS. This allows an attacker to inject...
CVE-2025-49266
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Ultimate Reviews ultimate-reviews allows Reflected XSS.This issue affects Ultimate Reviews: from n/a through = 3.2.14...
CVE-2025-49266
CVE-2025-49266 is a Reflected XSS vulnerability in the WordPress plugin Ultimate Reviews, affecting versions up to 3.2.14. Root cause: improper input neutralization during web page generation. Impact: potential client-side script execution within affected sites. Remediation: upgrade to a version ...
CVE-2025-49266 WordPress Ultimate Reviews plugin <= 3.2.14 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Ultimate Reviews ultimate-reviews allows Reflected XSS.This issue affects Ultimate Reviews: from n/a through = 3.2.14...
PT-2025-25704 · Unknown · Rustaurius Ultimate Reviews
Name of the Vulnerable Software and Affected Versions: Rustaurius Ultimate Reviews versions n/a through 3.2.14 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. Recommendations: For version...
CVE-2025-49288
Missing Authorization vulnerability in Rustaurius Ultimate WP Mail ultimate-wp-mail allows Authentication Bypass.This issue affects Ultimate WP Mail: from n/a through = 1.3.5...
CVE-2025-49288
Missing Authorization vulnerability in Rustaurius Ultimate WP Mail ultimate-wp-mail allows Authentication Bypass.This issue affects Ultimate WP Mail: from n/a through = 1.3.5...
CVE-2025-49288
CVE-2025-49288 – A Missing Authorization vulnerability in the WordPress plugin Ultimate WP Mail (ultimate-wp-mail) allows Authentication Bypass in versions
PT-2025-24223 · WordPress · Rustaurius Ultimate Wp Mail
Name of the Vulnerable Software and Affected Versions: Rustaurius Ultimate WP Mail versions 1.3.5 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For Rustaurius...
CVE-2025-47580
Missing Authorization vulnerability in Rustaurius Front End Users front-end-only-users allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Front End Users: from n/a through = 3.2.35...
CVE-2025-47580
Missing Authorization vulnerability in Rustaurius Front End Users allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Front End Users: from n/a through 3.2.32...