34 matches found
EUVD-2025-2741
Malicious code in bioql PyPI...
EUVD-2025-12768
Malicious code in bioql PyPI...
EUVD-2022-51816
Malicious code in bioql PyPI...
Drupal Simple XML sitemap 安全漏洞
Drupal Simple XML sitemap is an XML sitemap generator for the Drupal community. A security vulnerability exists in Drupal Simple XML sitemap versions prior to 4.2.2 that stems from improper input neutralization and could lead to a cross-site scripting attack...
CVE-2023-6492
The Simple Sitemap – Create a Responsive HTML Sitemap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.5.13. This is due to missing or incorrect nonce validation in the 'adminnotices' hook found in class-settings.php. This makes it possible...
CVE-2022-4472
The Simple Sitemap WordPress plugin before 3.5.8 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privile...
CVE-2025-39413
Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap simple-sitemap.This issue affects Simple Sitemap – Create a Responsive HTML Sitemap: from n/a through = 3.6.0...
CVE-2025-39413
Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap simple-sitemap.This issue affects Simple Sitemap – Create a Responsive HTML Sitemap: from n/a through = 3.6.0...
CVE-2025-39413
Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap.This issue affects Simple Sitemap – Create a Responsive HTML Sitemap: from n/a through 3.5.14...
CVE-2025-39413 WordPress Simple Sitemap – Create a Responsive HTML Sitemap plugin <= 3.6.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap simple-sitemap.This issue affects Simple Sitemap – Create a Responsive HTML Sitemap: from n/a through = 3.6.0...
CVE-2025-39413
CVE-2025-39413 describes a Missing Authorization vulnerability in the WordPress plugin Simple Sitemap – Create a Responsive HTML Sitemap (versions up to 3.5.14). The issue, categorized as a Broken Access Control/Missing Authorization, could allow unauthorized access to sitemap data. Connected sou...
CVE-2025-39413 WordPress Simple Sitemap – Create a Responsive HTML Sitemap plugin <= 3.6.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap simple-sitemap.This issue affects Simple Sitemap – Create a Responsive HTML Sitemap: from n/a through = 3.6.0...
PT-2025-17531 · David Gwyer +1 · Simple Sitemap – Create A Responsive Html Sitemap +1
Name of the Vulnerable Software and Affected Versions: Simple Sitemap – Create a Responsive HTML Sitemap versions 3.5.14 and earlier Description: A Missing Authorization issue affects the Simple Sitemap plugin. This issue may allow unauthorized access. Recommendations: For Simple Sitemap – Create...
CVE-2025-22342
Cross-Site Request Forgery CSRF vulnerability in Jenst WP Simple Sitemap wp-simple-sitemap allows Stored XSS.This issue affects WP Simple Sitemap: from n/a through = 0.2...
CVE-2025-22342
Cross-Site Request Forgery CSRF vulnerability in Jenst WP Simple Sitemap wp-simple-sitemap allows Stored XSS.This issue affects WP Simple Sitemap: from n/a through = 0.2...
CVE-2025-22342
CVE-2025-22342 affects the WordPress plugin WP Simple Sitemap. The connected sources describe a Cross-Site Request Forgery (CSRF) vulnerability that leads to stored XSS in WP Simple Sitemap versions up to 0.2 (from n/a through 0.2). Exploitation details, affected product/version ranges beyond thi...
CVE-2025-22342 WordPress WP Simple Sitemap plugin <= 0.2 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Jens Törnell WP Simple Sitemap allows Stored XSS.This issue affects WP Simple Sitemap: from n/a through 0.2...
CVE-2025-22342 WordPress WP Simple Sitemap plugin <= 0.2 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Jenst WP Simple Sitemap wp-simple-sitemap allows Stored XSS.This issue affects WP Simple Sitemap: from n/a through = 0.2...
WordPress WP Simple Sitemap plugin <= 0.2 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin WP Simple Sitemap versions = 0.2...
CVE-2023-6492
The Simple Sitemap – Create a Responsive HTML Sitemap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.5.13. This is due to missing or incorrect nonce validation in the 'adminnotices' hook found in class-settings.php. This makes it possible...