246 matches found
EUVD-2024-29199
Malicious code in bioql PyPI...
EUVD-2023-27787
Malicious code in bioql PyPI...
EUVD-2025-25469
Malicious code in bioql PyPI...
WordPress Sign-up Sheets Plugin <= 2.3.2 - PHP Object Injection Vulnerability
PHP Object Injection Vulnerability discovered by ChuongVN in WordPress Plugin Sign-up Sheets versions = 2.3.2...
Linux Distros Unpatched Vulnerability : CVE-2019-14880
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email...
CVE-2025-51092
The LogIn-SignUp project by VishnuSivadasVS is vulnerable to SQL Injection due to unsafe construction of SQL queries in DataBase.php. The functions logIn and signUp build queries by directly concatenating user input and unvalidated table names without using prepared statements. While a prepareDat...
CVE-2025-52352
Aikaan IoT management platform v3.25.0325-5-g2e9c59796 provides a configuration to disable user sign-up in distributed deployments by hiding the sign-up option on the login page UI. However, the sign-up API endpoint remains publicly accessible and functional, allowing unauthenticated users to...
CVE-2025-49391
Cross-Site Request Forgery CSRF vulnerability in Fetch Designs Sign-up Sheets sign-up-sheets allows Cross Site Request Forgery.This issue affects Sign-up Sheets: from n/a through = 2.3.3...
CVE-2025-52352
Aikaan IoT management platform v3.25.0325-5-g2e9c59796 provides a configuration to disable user sign-up in distributed deployments by hiding the sign-up option on the login page UI. However, the sign-up API endpoint remains publicly accessible and functional, allowing unauthenticated users to...
CVE-2025-52352
CVE-2025-52352 affects Aikaan IoT management platform version 3.25.0325-5-g2e9c59796. The UI can hide the sign-up option, but the signup API remains publicly accessible, allowing unauthenticated account creation and leading to authentication bypass and unauthorized admin portal access. Connected ...
WordPress Sign-up Sheets Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin Sign-up Sheets versions = 2.3.3...
CVE-2025-49391 WordPress Sign-up Sheets Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in Fetch Designs Sign-up Sheets sign-up-sheets allows Cross Site Request Forgery.This issue affects Sign-up Sheets: from n/a through = 2.3.3...
CVE-2025-49391 WordPress Sign-up Sheets Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in Fetch Designs Sign-up Sheets sign-up-sheets allows Cross Site Request Forgery.This issue affects Sign-up Sheets: from n/a through = 2.3.3...
WordPress plugin Sign-up Sheets 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
PT-2025-33935 · Fetch Designs · Fetch Designs Sign-Up Sheets
Name of the Vulnerable Software and Affected Versions: Fetch Designs Sign-up Sheets versions through 2.3.3 Description: The vulnerability allows for Cross-Site Request Forgery CSRF. This issue affects the Sign-up Sheets functionality. Recommendations: At the moment, there is no information about ...
CVE-2025-3704
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DBAR Productions Volunteer Sign Up Sheets pta-volunteer-sign-up-sheets allows Stored XSS.This issue affects Volunteer Sign Up Sheets: from n/a through 5.5.5...
CVE-2025-3704
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DBAR Productions Volunteer Sign Up Sheets pta-volunteer-sign-up-sheets allows Stored XSS.This issue affects Volunteer Sign Up Sheets: from n/a through 5.5.5...
CVE-2025-3704
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DBAR Productions Volunteer Sign Up Sheets allows Stored XSS.This issue affects Volunteer Sign Up Sheets: from n/a before 5.5.5. The patch is available exclusively on GitHub at...
CVE-2025-3704
CVE-2025-3704 concerns the WordPress plugin “Volunteer Sign Up Sheets” by DBAR Productions. The vulnerability is an stored XSS caused by improper input neutralization during web page generation in versions prior to 5.5.5. Public references indicate the patch is available only on GitHub (pt a-volu...
CVE-2025-3704 WordPress Volunteer Sign Up Sheets plugin < 5.5.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DBAR Productions Volunteer Sign Up Sheets pta-volunteer-sign-up-sheets allows Stored XSS.This issue affects Volunteer Sign Up Sheets: from n/a through 5.5.5...