15 matches found
EUVD-2022-51392
Malicious code in bioql PyPI...
CVE-2025-10050
The Developer Loggers for Simple History plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 0.5 via the enabledloggers parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute...
PT-2025-38096
Name of the Vulnerable Software and Affected Versions: Developer Loggers for Simple History plugin for WordPress versions prior to 0.6 Description: The Developer Loggers for Simple History plugin for WordPress is susceptible to a Local File Inclusion issue via the enabled loggers parameter. This...
CVE-2025-5760 Simple History <= 5.8.1 - Authenticated (Administrator+) Sensitive Information Exposure via Detective Mode
The Simple History plugin for WordPress is vulnerable to sensitive data exposure via Detective Mode due to improper sanitization within the appenddebuginfotocontext function in versions prior to 5.8.1. When Detective Mode is enabled, the plugin’s logger captures the entire contents of $POST and...
PT-2025-24077 · WordPress · Simple History
Name of the Vulnerable Software and Affected Versions: The Simple History plugin for WordPress versions prior to 5.8.1 Description: The issue concerns sensitive data exposure due to improper sanitization within the append debug info to context function when Detective Mode is enabled. This allows...
CVE-2022-4011
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...
CVE-2022-45350 WordPress Simple History plugin <= 3.3.1 - CSV Injection vulnerability
A vulnerability in Pär Thernström Simple History simple-history.This issue affects Simple History: from n/a through = 3.3.1...
CVE-2022-45350 WordPress Simple History Plugin <= 3.3.1 is vulnerable to CSV Injection
Improper Neutralization of Formula Elements in a CSV File vulnerability in Pär Thernström Simple History – user activity log, audit tool.This issue affects Simple History – user activity log, audit tool: from n/a through 3.3.1...
CVE-2022-4011
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...
Design/Logic Flaw
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...
CVE-2022-4011
CVE-2022-4011 affects the WordPress Simple History Plugin, specifically the Header Handler. The issue arises from manipulation of the X-Forwarded-For argument, causing improper output neutralization in logs. The vulnerability is exploitable remotely and has been disclosed publicly. Several connec...
CVE-2022-4011 Simple History Plugin Header neutralization for logs
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...
CVE-2022-4011 Simple History Plugin Header neutralization for logs
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...
PT-2022-25212 · WordPress · Simple History Plugin
Name of the Vulnerable Software and Affected Versions: Simple History Plugin affected versions not specified Description: A critical issue affects the Header Handler component of the Simple History Plugin, where the manipulation of the X-Forwarded-For argument leads to improper output...
WordPress Simple History Plugin <= 1.0.7 - Information Disclosure
This plugin is prone to RSS Feed "rsssecret" disclosure weakness vulnerability. Solution Update the plugin...