35 matches found
CVE-2026-25014
Cross-Site Request Forgery CSRF vulnerability in themelooks Enter Addons enteraddons allows Cross Site Request Forgery.This issue affects Enter Addons: from n/a through = 2.3.2...
CVE-2026-25014
Cross-Site Request Forgery CSRF vulnerability in themelooks Enter Addons enteraddons allows Cross Site Request Forgery.This issue affects Enter Addons: from n/a through = 2.3.2...
EUVD-2026-5298
Cross-Site Request Forgery CSRF vulnerability in themelooks Enter Addons enteraddons allows Cross Site Request Forgery.This issue affects Enter Addons: from n/a through = 2.3.2...
CVE-2026-25014
Cross-Site Request Forgery CSRF vulnerability in themelooks Enter Addons enteraddons allows Cross Site Request Forgery.This issue affects Enter Addons: from n/a through = 2.3.2...
PT-2026-6247
Name of the Vulnerable Software and Affected Versions themelooks Enter Addons versions prior to 2.3.3 Description A Cross-Site Request Forgery CSRF issue exists in themelooks Enter Addons. This allows attackers to perform actions on behalf of authenticated users without their knowledge. The issue...
EUVD-2024-36542
Malicious code in bioql PyPI...
EUVD-2024-40120
Malicious code in bioql PyPI...
EUVD-2024-53050
Malicious code in bioql PyPI...
EUVD-2024-42550
Malicious code in bioql PyPI...
CVE-2024-43225
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.7...
CVE-2024-47625
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themelooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through = 2.1.8...
CVE-2024-37263
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.6...
CVE-2024-56252
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themelooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through = 2.1.9...
CVE-2025-31847
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themelooks mFolio Lite mfolio-lite allows DOM-Based XSS.This issue affects mFolio Lite: from n/a through = 1.2.3...
CVE-2025-31847
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themelooks mFolio Lite mfolio-lite allows DOM-Based XSS.This issue affects mFolio Lite: from n/a through = 1.2.3...
PT-2025-14225 · Themelooks · Themelooks Mfolio Lite
Name of the Vulnerable Software and Affected Versions: themelooks mFolio Lite versions 1.2.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an attacker...
CVE-2024-56252
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themelooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through = 2.1.9...
CVE-2024-56252
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.9...
CVE-2024-56252 WordPress Enter Addons plugin <= 2.1.9 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.9...
CVE-2024-56252
CVE-2024-56252 : Stored XSS in Enter Addons (WordPress plugin). Root cause: improper neutralization of input during web page generation. Affected: Enter Addons – from n/a through 2.1.9. Exploitation: stored cross-site scripting via plugin-generated pages. Remediation: upgrade to version 2.1.9 or ...