5 matches found
CVE-2026-7041 666ghj MiroFish Werkzeug Debugger PIN console information disclosure
A vulnerability was detected in 666ghj MiroFish up to 0.1.2. The impacted element is an unknown function of the file /console of the component Werkzeug Debugger PIN Handler. Performing a manipulation of the argument SECRET results in information disclosure. It is possible to initiate the attack...
CVE-2026-2427
The CVE-2026-2427 issue concerns the itsukaita WordPress plugin. Affected: itsukaita plugin for WordPress. Vulnerability: Reflected Cross-Site Scripting via the day_from and day_to parameters in all versions up to and including 0.1.2, caused by insufficient input sanitization and output escaping....
WordPress Ketchup Shortcodes plugin <= 0.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zakaria in WordPress Plugin Ketchup Shortcodes versions = 0.1.2...
EUVD-2024-51681
Malicious code in bioql PyPI...
CVE-2025-30970
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in scottwallick Easy Contact easy-contact allows Reflected XSS.This issue affects Easy Contact: from n/a through = 0.1.2...