CVE-2025-26915

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PickPlugins Wishlist wishlist allows SQL Injection.This issue affects Wishlist: from n/a through = 1.0.41...

Beckman Coulter MET ONE 3400+ instruments running software 安全漏洞

Beckman Coulter MET ONE 3400+ instruments running software is a software for MET ONE 3400 + instruments running from Beckman Coulter, USA. SOP programs can be customized to automate cleanroom monitoring. Beckman Coulter MET ONE 3400+ instruments running software A security vulnerability exists in...

CVE-2025-26915 WordPress Wishlist Plugin <= 1.0.41 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PickPlugins Wishlist wishlist allows SQL Injection.This issue affects Wishlist: from n/a through = 1.0.41...

CVE-2025-26915

CVE-2025-26915 is an authenticated SQL Injection vulnerability in the WordPress plugin Wishlist. The issue affects Wishlist versions up to 1.0.41 and is caused by improper input handling in SQL commands. Exploitation requires authentication, and the CVSS base score is 8.5 (HIGH) with network acce...

CVE-2025-26915 WordPress Wishlist Plugin <= 1.0.41 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PickPlugins Wishlist wishlist allows SQL Injection.This issue affects Wishlist: from n/a through = 1.0.41...

WordPress plugin Wishlist SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

WordPress Wishlist Plugin <= 1.0.41 - SQL Injection vulnerability

SQL Injection vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Wishlist versions = 1.0.41...

WordPress plugin Flo Forms 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress Flo Forms Plugin <= 1.0.41 is vulnerable to Broken Access Control

Software Flo Forms Type Plugin Vulnerable versions = 1.0.41 Fixed in 1.0.42 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-47692 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 415778b368e8 Credits Abdi Pranata Required...

WordPress Affiliate Link Builder Plugin for Amazon Associates – Review Engine Plugin <= 1.0.41 is vulnerable to Cross Site Scripting (XSS)

Software Affiliate Link Builder Plugin for Amazon Associates – Review Engine Type Plugin Vulnerable versions = 1.0.41 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

PT-2023-20642 · Usr · Usr-G806

Name of the Vulnerable Software and Affected Versions: USR USR-G806 version 1.0.41 Description: A critical issue was found in the Web Management Page component, where the manipulation of the username/password argument with the input root leads to the use of a hard-coded password. This can be...

WordPress Rank Math SEO Plugin < 1.0.41 Multiple REST API Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:rankmath:seo"; ifdescription...

Linksys WVBRO25 RCE Vulnerability

Linksys WVBRO-25 is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

WordPress Music Store plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation's set of blogging platforms developed using the PHP language.Music Store is one of the plugins used to add a music store to WordPress. A cross-site scripting vulnerability exists in version 1.0.41 of the WordPress Music Store plugin. An attacker can...