9 matches found
PT-2025-44237
Name of the Vulnerable Software and Affected Versions WooCommerce versions prior to 7.8.3 Description The WooCommerce plugin for WordPress exhibits a sensitive information exposure issue due to improper CORS Cross-Origin Resource Sharing handling on the Store API’s REST endpoints. This allows...
CVE-2025-60206
Improper Control of Generation of Code 'Code Injection' vulnerability in Beplusthemes Alone alone allows Code Injection.This issue affects Alone: from n/a through = 7.8.3...
EUVD-2025-35419
Improper Control of Generation of Code 'Code Injection' vulnerability in Bearsthemes Alone alone allows Code Injection.This issue affects Alone: from n/a through = 7.8.3...
CVE-2025-60206
CVE-2025-60206 refers to a code injection vulnerability in Bearsthemes WordPress Alone theme (Alone) that enables remote code execution. Affected: Alone theme versions up to and including 7.8.3. Root cause: improper control of code generation leading to code injection. Impact: high severity with ...
WordPress Alone theme <= 7.8.3 - Remote Code Execution (RCE) vulnerability
Remote Code Execution RCE vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Alone versions = 7.8.3...
WordPress plugin Alone 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
CVE-2022-37783
creationtimestamp| type| source ---|---|--- 2022-12-06 00:40:11+00:00| seen| https://t.me/cibsecurity/54024...
Open-Xchange OX App Suite backend component cross-site scripting vulnerability
Open-Xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange USA. The environment allows users to more intuitively manage email, tasks, files, etc. backend is one of the backend components. A cross-site scripting vulnerability exists in the backend component in...
CVE-2026-1783
...