9 matches found
CVE-2026-42649
Unauthenticated Cross Site Scripting XSS in Favicon Rotator = 1.2.11 versions...
PT-2026-49443
Unauthenticated Cross Site Scripting XSS in Favicon Rotator = 1.2.11 versions...
WordPress M.Williamson theme <= 1.2.11 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Bonds in WordPress Theme M.Williamson versions = 1.2.11...
CVE-2025-49366
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Hanani hanani allows PHP Local File Inclusion.This issue affects Hanani: from n/a through = 1.2.11...
CVE-2025-64226
Cross-Site Request Forgery CSRF vulnerability in colabrio Stockie Extra stockie-extra allows Cross Site Request Forgery.This issue affects Stockie Extra: from n/a through = 1.2.11...
WordPress Stockie Extra plugin <= 1.2.11 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Bonds in WordPress Plugin Stockie Extra versions = 1.2.11...
WordPress Add to Feedly Plugin <= 1.2.11 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Add to Feedly versions = 1.2.11...
WordPress Theme My Ontraport Smartform plugin <= 1.2.11 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin Theme My Ontraport Smartform versions = 1.2.11...
WordPress plugin CalderaWP License Manager 跨站请求伪造漏洞
WordPress is a set of blogging platforms developed using the PHP language by the Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in the WordPress plugin CalderaWP License Manager version...