40 matches found
EUVD-2014-4478
Malware in sbrugna...
EUVD-2025-10613
Malicious code in bioql PyPI...
EUVD-2024-44026
Malicious code in bioql PyPI...
EUVD-2025-10625
Malicious code in bioql PyPI...
CVE-2025-32493
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VibeThemes BP Social Connect bp-social-connect allows Stored XSS.This issue affects BP Social Connect: from n/a through = 1.6.2...
CVE-2025-32481
Cross-Site Request Forgery CSRF vulnerability in ninotheme Nino Social Connect nino-social-connect allows Stored XSS.This issue affects Nino Social Connect: from n/a through = 2.0...
WordPress Nino Social Connect plugin <= 2.0 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by johska in WordPress Plugin Nino Social Connect versions = 2.0...
WordPress BP Social Connect plugin <= 1.6.2 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin BP Social Connect versions = 1.6.2...
CVE-2025-32493
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VibeThemes BP Social Connect bp-social-connect allows Stored XSS.This issue affects BP Social Connect: from n/a through = 1.6.2...
CVE-2025-32481
Cross-Site Request Forgery CSRF vulnerability in ninotheme Nino Social Connect nino-social-connect allows Stored XSS.This issue affects Nino Social Connect: from n/a through = 2.0...
CVE-2025-32481
CVE-2025-32481 is a CSRF to Stored XSS vulnerability in the WordPress plugin Nino Social Connect (ninotheme). Affected range is from unspecified earlier versions up to and including 2.0. The initial data indicates the vulnerability is unpatched, with no public fix details provided. Exploitation s...
CVE-2025-32481 WordPress Nino Social Connect plugin <= 2.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in ninotheme Nino Social Connect nino-social-connect allows Stored XSS.This issue affects Nino Social Connect: from n/a through = 2.0...
CVE-2025-32481 WordPress Nino Social Connect plugin <= 2.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in ninotheme Nino Social Connect allows Stored XSS. This issue affects Nino Social Connect: from n/a through 2.0...
CVE-2025-32493
CVE-2025-32493 is a stored XSS vulnerability in the WordPress plugin BP Social Connect (affected: up to version 1.6.2). The connected Wordfence entry indicates an authenticated (Administrator+) Stored Cross‑Site Scripting flaw in BP Social Connect
CVE-2025-32493 WordPress BP Social Connect <= 1.6.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VibeThemes BP Social Connect allows Stored XSS. This issue affects BP Social Connect: from n/a through 1.6.2...
CVE-2025-32493 WordPress BP Social Connect plugin <= 1.6.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VibeThemes BP Social Connect bp-social-connect allows Stored XSS.This issue affects BP Social Connect: from n/a through = 1.6.2...
WordPress plugin Nino Social Connect 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
PT-2025-15772 · Vibethemes · Vibethemes Bp Social Connect
Name of the Vulnerable Software and Affected Versions: VibeThemes BP Social Connect versions 1.6.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored XSS attacks. This means that an attacker can inject malicious...
WordPress plugin BP Social Connect 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2024-4393
Summary of CVE-2024-4393 : The Social Connect WordPress plugin (vulnerable up to and including 1.2) suffers an authentication bypass due to insufficient verification on the OpenID server during social login. This allows an unauthenticated attacker with email access to log in as any existing site ...