143 matches found
CVE-2023-45058
Cross-Site Request Forgery CSRF vulnerability in KaizenCoders Short URL plugin = 1.6.8 versions...
EUVD-2010-1092
Malware in sbrugna...
EUVD-2009-4691
Malware in sbrugna...
EUVD-2010-1093
Malware in sbrugna...
EUVD-2009-2636
Malware in sbrugna...
EUVD-2024-46605
Malicious code in bioql PyPI...
EUVD-2023-51357
Malicious code in bioql PyPI...
EUVD-2024-29959
Malicious code in bioql PyPI...
EUVD-2023-49379
Malicious code in bioql PyPI...
EUVD-2023-23836
Malicious code in bioql PyPI...
EUVD-2022-49641
Malicious code in bioql PyPI...
CVE-2025-55420
creationtimestamp| type| source ---|---|--- 2025-08-21 18:43:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwwlw7fktl2a...
CVE-2023-2921
The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...
CVE-2023-2921 Short URL <= 1.6.8 - Subscriber+ SQLi
The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...
CVE-2023-2921 Short URL <= 1.6.8 - Subscriber+ SQLi
The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...
CVE-2023-2921
The CVE-2023-2921 entry concerns the WordPress Short URL plugin (versions ≤ 1.6.8). A parameter is not properly sanitised/escaped before its use in an SQL statement, enabling SQL injection. Impact is stated as exploitable by users with low privileges (e.g., subscribers). Affected component is the...
WordPress plugin Short URL 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
PT-2025-24017 · WordPress · Short Url Wordpress Plugin
Name of the Vulnerable Software and Affected Versions: Short URL WordPress plugin versions 1.6.8 and earlier Description: The issue is related to a SQL injection problem. The Short URL WordPress plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading t...
CVE-2024-5380
A vulnerability classified as problematic has been found in jsy-1 short-url 1.0.0. Affected is an unknown function of the file admin.php. The manipulation of the argument url leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 2.0.0 is able to address...
CVE-2023-3130
The Short URL WordPress plugin before 1.6.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...