CVE-2025-39484

CVE-2025-39484 : An SQL Injection vulnerability in the WordPress theme Entrada (Waituk Entrada) exists due to improper neutralization of input in SQL commands. Affected product/version: Entrada up to 5.7.7. Exploitation context and impact are described as SQL injection with high likelihood of dat...

CVE-2025-39484 WordPress Entrada Theme <= 5.7.7 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Waituk Entrada allows SQL Injection.This issue affects Entrada: from n/a through 5.7.7...

CVE-2025-39484 WordPress Entrada Theme <= 5.7.7 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Waituk Entrada allows SQL Injection.This issue affects Entrada: from n/a through 5.7.7...

CVE-2023-50897

Unrestricted Upload of File with Dangerous Type vulnerability in Meow Apps Media File Renamer allows Using Malicious Files.This issue affects Media File Renamer: from n/a through 5.7.7...

PT-2026-1301

Name of the Vulnerable Software and Affected Versions Waituk Entrada versions through 5.7.7 Description An improper neutralization of special elements used in an SQL command vulnerability exists in Waituk Entrada, allowing for SQL injection. This issue could potentially allow unauthorized databas...

CVE-2025-58918

Cross-Site Request Forgery CSRF vulnerability in Waituk Entrada theme allows Cross Site Request Forgery.This issue affects Entrada: from n/a through 5.7.7...

EUVD-2022-0553

Malicious code in bioql PyPI...

EUVD-2025-13791

Malicious code in bioql PyPI...

WordPress Entrada theme <= 5.7.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Entrada versions = 5.7.7...

CVE-2022-21651

Shopware is an open source e-commerce software platform. An open redirect vulnerability has been discovered. Users may be arbitrary redirected due to incomplete URL handling in the shopware router. This issue has been resolved in version 5.7.7. There is no workaround and users are advised to...

WordPress Entrada Theme <= 5.7.7 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Bonds in WordPress Theme Entrada versions = 5.7.7...

CVE-2025-47545 WordPress Poll Maker plugin <= 5.7.7 - Race Condition Vulnerability

Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' vulnerability in Ays Pro Poll Maker poll-maker allows Leveraging Race Conditions.This issue affects Poll Maker: from n/a through = 5.7.7...

WordPress Poll Maker plugin <= 5.7.7 - Race Condition Vulnerability

Race Condition Vulnerability discovered by Ibrahim Mohammad in WordPress Plugin Poll Maker versions = 5.7.7...

Open redirect

Shopware is an open source e-commerce software platform. An open redirect vulnerability has been discovered. Users may be arbitrary redirected due to incomplete URL handling in the shopware router. This issue has been resolved in version 5.7.7. There is no workaround and users are advised to...

Design/Logic Flaw

Shopware is an open source e-commerce software platform. In affected versions shopware would not invalidate a user session in the event of a password change. With version 5.7.7 the session validation was adjusted, so that sessions created prior to the latest password change of a customer account...

CVE-2022-21651 Open redirect in shopware

Shopware is an open source e-commerce software platform. An open redirect vulnerability has been discovered. Users may be arbitrary redirected due to incomplete URL handling in the shopware router. This issue has been resolved in version 5.7.7. There is no workaround and users are advised to...