CVE-2025-64237

CVE-2025-64237 is a CSRF vulnerability in the WordPress plugin Quick Interest Slider (versions up to 3.1.5). The issue allows cross-site request forgery in the affected plugin. Public sources (e.g., Patchstack/WordPress CVE notes) indicate upgrading to a newer release is recommended, but the exac...

CVE-2025-61834 Substance3D - Stager | Use After Free (CWE-416)

Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-64531 Substance3D - Stager | Use After Free (CWE-416)

Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

WordPress plugin FULL – Cliente SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. WordPress plugin...