EUVD-2025-7887

Malicious code in bioql PyPI...

CVE-2025-28941

Cross-Site Request Forgery CSRF vulnerability in ohtan Spam Byebye spam-byebye allows Cross Site Request Forgery.This issue affects Spam Byebye: from n/a through = 2.2.4...

WordPress SPAM-BYBYE Plugin <= 2.2.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Spam Byebye versions = 2.2.4...

CVE-2025-28941

Cross-Site Request Forgery CSRF vulnerability in ohtan Spam Byebye spam-byebye allows Cross Site Request Forgery.This issue affects Spam Byebye: from n/a through = 2.2.4...

CVE-2025-28941 WordPress SPAM-BYBYE Plugin <= 2.2.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ohtan Spam Byebye spam-byebye allows Cross Site Request Forgery.This issue affects Spam Byebye: from n/a through = 2.2.4...

CVE-2025-28941

CVE-2025-28941 : CSRF vulnerability in WordPress Spam Byebye plugin (≤ 2.2.4). Root cause: cross-site request forgery, with no confidentiality/integrity/availability impact stated beyond a low/partial impact per CVSS (I: Low, A: None). Exploitation requires user interaction; no explicit exploit d...

CVE-2025-28941 WordPress SPAM-BYBYE Plugin <= 2.2.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ohtan Spam Byebye spam-byebye allows Cross Site Request Forgery.This issue affects Spam Byebye: from n/a through = 2.2.4...

WordPress plugin Spam Byebye 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

WordPress spam-byebye cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Software Foundation using the PHP language, which supports personal blog sites on PHP and MySQL servers. spam-byebye is a spam filtering plugin used in it. A cross-site scripting vulnerability exists in WordPress spam-byebye 2.2.1 and...

WordPress spam-byebye Plugin < 2.2.2 XSS Vulnerability

The WordPress plugin Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the...

WordPress spam-byebye plugin <= 2.2.1 - Cross-Site Scripting (XSS) vulnerability

Cross-Site Scripting XSS vulnerability found by qw3rTyTy in WordPress spam-byebye plugin versions = 2.2.1. Solution Update the WordPress spam-byebye plugin to the latest available version at least 2.2.2...

CVE-2018-16206

Cross-site scripting vulnerability in WordPress plugin spam-byebye 2.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2018-16206

The CVE-2018-16206 entry concerns the WordPress plugin spam-byebye, affected version 2.2.1 and earlier. The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Public references from multiple sources (incl...

WordPress plugin "spam-byebye" vulnerable to cross-site scripting

Overview The WordPress plugin "spam-byebye" contains a reflected cross-site scripting vulnerability CWE-79 qw3rTyTy reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An arbitrary script may be executed on the...

JVN#58010349: WordPress plugin "spam-byebye" vulnerable to cross-site scripting

The WordPress plugin "spam-byebye" contains a reflected cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of the user who can access the setup page of the affected plugin. Solution Update the plugin Update the plugin according to the...

spam-byebye <= 2.2.1 - Cross-Site Scripting (XSS)

The spam-byebye WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...