148 matches found
EUVD-2024-42335
Malicious code in bioql PyPI...
EUVD-2023-54811
Malicious code in bioql PyPI...
EUVD-2024-16847
Malicious code in bioql PyPI...
EUVD-2025-17250
Malicious code in bioql PyPI...
EUVD-2025-3751
Malicious code in bioql PyPI...
404 Page by SeedProd < 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting
Description The 404 Page by SeedProd plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including 1.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, ...
CVE-2025-49322
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeedProd 404 Page by SeedProd allows Stored XSS. This issue affects 404 Page by SeedProd: from n/a through n/a...
CVE-2025-49322
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeedProd 404 Page by SeedProd allows Stored XSS. This issue affects 404 Page by SeedProd: from n/a through n/a...
CVE-2025-49322
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeedProd 404 Page by SeedProd allows Stored XSS. This issue affects 404 Page by SeedProd: from n/a through n/a...
CVE-2025-49322
CVE-2025-49322 affects the WordPress plugin 404 Page by SeedProd. It is a Stored XSS vulnerability in the page generation flow, exploitable only by authenticated attackers (Administrator+). Affected versions are up to 1.0.1; a fix is available in 1.0.2+ (upgrade recommended). CVSS v3.1 base score...
CVE-2025-49322 WordPress 404 Page by SeedProd < 1.0.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeedProd 404 Page by SeedProd allows Stored XSS. This issue affects 404 Page by SeedProd: from n/a through n/a...
CVE-2025-49322 WordPress 404 Page by SeedProd < 1.0.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeedProd 404 Page by SeedProd allows Stored XSS. This issue affects 404 Page by SeedProd: from n/a through n/a...
WordPress plugin 404 Page by SeedProd 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exist...
PT-2025-24246 · Seedprod · Seedprod 404 Page
Name of the Vulnerable Software and Affected Versions: SeedProd 404 Page by SeedProd affected versions not specified Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Stored XSS. This enables an...
CVE-2025-24540
Cross-Site Request Forgery CSRF vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd coming-soon allows Cross Site Request Forgery.This issue affects Coming Soon Page, Under Construction & Maintenance Mode by SeedProd: from n/a through = 6.18.9...
CVE-2024-47299
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd coming-soon allows Stored XSS.This issue affects Coming Soon Page, Under Construction & Maintenance Mode by SeedProd: fr...
CVE-2024-32088
Cross-Site Request Forgery CSRF vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd.This issue affects Coming Soon Page, Under Construction & Maintenance Mode by SeedProd: from n/a through 6.15.20...
CVE-2024-37556
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in SeedProd WordPress Notification Bar allows Stored XSS.This issue affects WordPress Notification Bar: from n/a through 1.3.10...
CVE-2023-4975
The Website Builder by SeedProd plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 6.15.13.1. This is due to missing or incorrect nonce validation on functionality in the builder.php file. This makes it possible for unauthenticated attackers to chan...
CVE-2025-3949
The Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'seedprodlitegetrevisisons' function in all versions up to, and including, 6.18.15...