WordPress plugin Core 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

CVE-2025-57922

Insertion of Sensitive Information Into Sent Data vulnerability in Coordinadora Mercantil S.A. Envíos Coordinadora Woocommerce coordinadora allows Retrieve Embedded Sensitive Data.This issue affects Envíos Coordinadora Woocommerce: from n/a through = 1.1.32...

PT-2025-38912

Name of the Vulnerable Software and Affected Versions Themeum Qubely versions through 1.8.14 Description A flaw exists in Themeum Qubely that allows for the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. Recommendations Update Themeum Qubely to ...

CVE-2025-5519

CVE-2025-5519 affects ArgusTech BILGER before 2.4.6. The flaw is an information disclosure where sensitive data can be inserted into sent data, enabling a possible “choose message identifier” issue. Impact is described as information disclosure with Confidentiality impact low and Availability/Int...

CVE-2025-5519 Information Disclosure in ArgusTech's BILGER

Insertion of Sensitive Information Into Sent Data vulnerability in ArgusTech BILGER allows Choosing Message Identifier. This issue affects BILGER: before 2.4.6...

CVE-2025-5519

Insertion of Sensitive Information Into Sent Data vulnerability in ArgusTech BILGER allows Choosing Message Identifier. This issue affects BILGER: before 2.4.6...

PT-2025-36211

Name of the Vulnerable Software and Affected Versions: premiumbizthemes Simple Price Calculator versions through 1.3 Description: A flaw exists in premiumbizthemes Simple Price Calculator that allows retrieval of embedded sensitive data due to insertion of sensitive information into sent data...

"Gunosy" App vulnerable to insertion of sensitive information into sent data

Overview "Gunosy" App provided by Gunosy Inc. contains the following vulnerability. Insertion of sensitive information into sent data CWE-201 - CVE-2025-44017 YUNAO ZHOU of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early...

PT-2025-35029

Name of the Vulnerable Software and Affected Versions: Hesabfa Accounting versions through 2.2.4 Description: Hesabfa Accounting is susceptible to a flaw that allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. Recommendations: Update...

CVE-2025-49408

Insertion of Sensitive Information Into Sent Data vulnerability in WPDeveloper Templately allows Retrieve Embedded Sensitive Data. This issue affects Templately: from n/a through 3.2.7...

CVE-2025-53985

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTabs jet-tabs allows Retrieve Embedded Sensitive Data.This issue affects JetTabs: from n/a through = 2.2.9...

CVE-2025-53196

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetEngine jet-engine allows Retrieve Embedded Sensitive Data.This issue affects JetEngine: from n/a through = 3.7.0...

CVE-2025-41415 AVEVA PI Integrator Insertion of Sensitive Information into Sent Data

The vulnerability, if exploited, could allow an authenticated miscreant with privileges to access publication targets to retrieve sensitive information that could then be used to gain additional access to downstream resources...

CVE-2025-53992

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTricks jet-tricks allows Retrieve Embedded Sensitive Data.This issue affects JetTricks: from n/a through = 1.5.4.1...

CVE-2025-49408

Insertion of Sensitive Information Into Sent Data vulnerability in WPDeveloper Templately allows Retrieve Embedded Sensitive Data. This issue affects Templately: from n/a through 3.2.7...

CVE-2025-53196

CVE-2025-53196 describes a vulnerability in Crocoblock JetEngine (JetEngine, WordPress plugin) where the insertion of sensitive information into sent data could lead to retrieval of embedded sensitive data. Technical details across connected sources show this affects JetEngine versions up to and ...

CVE-2025-53196 WordPress JetEngine <= 3.7.0 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetEngine jet-engine allows Retrieve Embedded Sensitive Data.This issue affects JetEngine: from n/a through = 3.7.0...

CVE-2025-53987

CVE-2025-53987 is a WordPress JetMenu vulnerability affecting Crocoblock JetMenu versions up to and including 2.4.11.1, described as an insertion of sensitive information into sent data that can lead to retrieval of embedded sensitive data. According to the public details, the CVSSv3.1 base score...

CVE-2025-53985 WordPress JetTabs <= 2.2.9 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTabs jet-tabs allows Retrieve Embedded Sensitive Data.This issue affects JetTabs: from n/a through = 2.2.9...

CVE-2025-53992

CVE-2025-53992 affects Crocoblock JetTricks WordPress plugin (versions up to and including 1.5.4.1). Description: Insertion of Sensitive Information Into Sent Data vulnerability allows retrieval of embedded sensitive data. Impact notes indicate potential exposure of confidential information; CVSS...