EUVD-2014-2864

Malware in sbrugna...

EUVD-2014-2863

Malware in sbrugna...

EUVD-2023-41741

Malicious code in bioql PyPI...

CVE-2025-27303 WordPress Contact Form 7 Star Rating plugin <= 1.10 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themelogger Contact Form 7 Star Rating contact-form-7-star-rating allows Stored XSS.This issue affects Contact Form 7 Star Rating: from n/a through = 1.10...

PT-2023-26148 · WordPress · Yasr

Name of the Vulnerable Software and Affected Versions: YASR – Yet Another Star Rating Plugin for WordPress versions 3.3.8 and earlier Description: A Time-of-check Time-of-use TOCTOU Race Condition issue affects the YASR – Yet Another Star Rating Plugin for WordPress. This issue allows for a race...

CVE-2022-46867

CVE-2022-46867 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress feature/plugin named Universal Star Rating, affecting versions

CVE-2014-2838

Multiple cross-site request forgery CSRF vulnerabilities in the GD Star Rating plugin 19.22 for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct 1 SQL injection attacks via the s parameter in the gd-star-rating-stats page to...

WordPress GD Star Rating Plugin 'votes' Parameter SQL Injection Vulnerability

WordPress GD Star Rating Plugin is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...