CVE-2025-61644

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Rcfilters/ui/WatchlistTopSectionWidget.Js. This issue affects MediaWiki: from befo...

CVE-2025-61644

CVE-2025-61644 is an XSS vulnerability in Wikimedia Foundation MediaWiki, tied to the client-side file resources/src/mediawiki.Rcfilters/ui/WatchlistTopSectionWidget.Js. The issue arises from improper neutralization of input during web page generation, affecting MediaWiki instances: from before f...

EUVD-2025-15777

Malicious code in bioql PyPI...

EUVD-2025-28061

Malicious code in bioql PyPI...

CVE-2025-46537

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ctltwp Section Widget section-widget allows Reflected XSS.This issue affects Section Widget: from n/a through = 3.3.1...

CVE-2025-46537

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ctltwp Section Widget section-widget allows Reflected XSS.This issue affects Section Widget: from n/a through = 3.3.1...

CVE-2025-46537 WordPress Section Widget plugin <= 3.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ctltwp Section Widget allows Reflected XSS. This issue affects Section Widget: from n/a through 3.3.1...

CVE-2025-46537

CVE-2025-46537 is a WordPress Section Widget vulnerability (ctltwp Section Widget) that allows a Reflected XSS due to improper input neutralization during web page generation. Affected versions are listed as n/a through 3.3.1. The issue is corroborated in multiple sources (NVD/Red Hat/CVE records...

CVE-2025-46537 WordPress Section Widget plugin <= 3.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ctltwp Section Widget section-widget allows Reflected XSS.This issue affects Section Widget: from n/a through = 3.3.1...

WordPress plugin Section Widget 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

CVE-2025-46441

Path Traversal: '.../...//' vulnerability in ctltwp Section Widget section-widget allows Path Traversal.This issue affects Section Widget: from n/a through = 3.3.1...

CVE-2025-46441

Path Traversal: '.../...//' vulnerability in ctltwp Section Widget section-widget allows Path Traversal.This issue affects Section Widget: from n/a through = 3.3.1...

CVE-2025-46441 WordPress Section Widget plugin <= 3.3.1 - Path Traversal vulnerability

Path Traversal: '.../...//' vulnerability in ctltwp Section Widget section-widget allows Path Traversal.This issue affects Section Widget: from n/a through = 3.3.1...

CVE-2025-46441

CVE-2025-46441 concerns the WordPress Section Widget plugin (versions up to 3.3.1) with a Path Traversal vulnerability in the ctltwp Section Widget. The initial CVE description and multiple connected sources confirm a path traversal issue (".../...//") that could affect Section Widget up through ...

WordPress plugin Section Widget 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2025-22109 · Unknown · Section Widget

Name of the Vulnerable Software and Affected Versions: Section Widget versions n/a through 3.3.1 Description: The issue is related to a Path Traversal vulnerability, specifically a '.../...//' vulnerability in the ctltwp Section Widget, which allows Path Traversal. Recommendations: For versions n...

WordPress Section Widget plugin <= 3.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Section Widget versions = 3.3.1...