43 matches found
CVE-2025-46494
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themesgrove WidgetKit Pro allows Reflected XSS.This issue affects WidgetKit Pro: from n/a through 1.13.1...
CVE-2025-46494
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themesgrove WidgetKit Pro allows Reflected XSS.This issue affects WidgetKit Pro: from n/a through 1.13.1...
CVE-2025-46494
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themesgrove WidgetKit Pro allows Reflected XSS.This issue affects WidgetKit Pro: from n/a through 1.13.1...
EUVD-2024-34851
Malicious code in bioql PyPI...
EUVD-2025-17134
Malicious code in bioql PyPI...
EUVD-2025-27447
Malicious code in bioql PyPI...
EUVD-2024-36657
Malicious code in bioql PyPI...
EUVD-2024-34490
Malicious code in bioql PyPI...
EUVD-2023-42208
Malicious code in bioql PyPI...
EUVD-2025-19262
Malicious code in bioql PyPI...
CVE-2025-32689
Improper Validation of Specified Quantity in Input vulnerability in Convers Lab WP SmartPay smartpay.This issue affects WP SmartPay: from n/a through = 2.8.2...
CVE-2025-32689
Improper Validation of Specified Quantity in Input vulnerability in Convers Lab WP SmartPay smartpay.This issue affects WP SmartPay: from n/a through = 2.8.2...
CVE-2025-32689
CVE-2025-32689 affects the WordPress plugin “WP SmartPay” (ThemesGrove) up to version 2.7.13. The issue is an improper validation of the specified quantity in input , potentially enabling a price manipulation vulnerability. Public documents from multiple sources confirm the affected range and the...
CVE-2025-32689 WordPress Download Manager and Payment Form plugin <= 2.8.2 - Price Manipulation vulnerability
Improper Validation of Specified Quantity in Input vulnerability in Convers Lab WP SmartPay smartpay.This issue affects WP SmartPay: from n/a through = 2.8.2...
PT-2025-36757
Name of the Vulnerable Software and Affected Versions: WP SmartPay versions n/a through 2.7.13 Description: An improper validation of the specified quantity in input exists in ThemesGrove WP SmartPay. Recommendations: Update WP SmartPay to a version later than 2.7.13...
CVE-2025-25171
Authentication Bypass Using an Alternate Path or Channel vulnerability in Convers Lab WP SmartPay smartpay allows Authentication Abuse.This issue affects WP SmartPay: from n/a through = 2.7.13...
CVE-2025-25171
Authentication Bypass Using an Alternate Path or Channel vulnerability in Convers Lab WP SmartPay smartpay allows Authentication Abuse.This issue affects WP SmartPay: from n/a through = 2.7.13...
CVE-2025-25171
The CVE-2025-25171 entry concerns WordPress WP SmartPay up to version 2.7.13, where an Authentication Bypass via an alternate path or channel allows Authentication Abuse (potential account takeover). Affected component: WP SmartPay plugin; root cause described as an authentication bypass enabling...
CVE-2025-25171 WordPress WP SmartPay plugin <= 2.7.13 - Account Takeover vulnerability
Authentication Bypass Using an Alternate Path or Channel vulnerability in ThemesGrove WP SmartPay allows Authentication Abuse. This issue affects WP SmartPay: from n/a through 2.7.13...
CVE-2025-49074
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Abu Huraira Bin Aman WidgetKit widgetkit-for-elementor allows Stored XSS.This issue affects WidgetKit: from n/a through = 2.5.4...