15 matches found
EUVD-2025-19385
Malicious code in bioql PyPI...
EUVD-2025-19993
Malicious code in bioql PyPI...
WordPress VG WORT METIS Authorization Issue Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. An authorization issue vulnerability exists in WordPress VG WORT METIS, which can be exploited by attackers to take over the accounts of other web application users...
CVE-2025-50039
Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...
CVE-2025-50039
Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...
CVE-2025-50039
CVE-2025-50039 affects the WordPress VG WORT METIS plugin. Multiple connected sources consistently describe a Missing Authorization vulnerability leading to Broken Access Control in VG WORT METIS versions n/a through 2.0.0 (and, in Patchstack,
CVE-2025-50039 WordPress VG WORT METIS plugin <= 2.0.1 - Broken Access Control Vulnerability
Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...
CVE-2025-50039 WordPress VG WORT METIS plugin <= 2.0.1 - Broken Access Control Vulnerability
Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...
PT-2025-27931 · Vg Wort · Vg Wort Metis
Name of the Vulnerable Software and Affected Versions: VG WORT METIS versions n/a through 2.0.0 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For VG WORT METIS versions n/...
WordPress plugin VG WORT METIS 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. An authorization issue vulnerability exists in WordPress VG WORT METIS, which can be exploited by attackers to take over the accounts of other web application users...
CVE-2025-5812
The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenbergsavepost function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...
CVE-2025-5812 VG WORT METIS <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update
The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenbergsavepost function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...
CVE-2025-5812
VG WORT METIS for WordPress is affected by CVE-2025-5812: versions up to 2.0.0 contain a missing capability check in gutenberg_save_post(), allowing authenticated users with Subscriber-level access or higher to modify limited post settings. Attack impact is described as unauthorized modification ...
CVE-2025-5812 VG WORT METIS <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update
The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenbergsavepost function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...
PT-2025-26920 · WordPress · Vg Wort Metis
Name of the Vulnerable Software and Affected Versions: VG WORT METIS plugin for WordPress versions prior to 2.0.0 Description: The issue is related to unauthorized modification of data due to a missing capability check on the gutenberg save post function. This allows authenticated attackers with...