EUVD-2024-49230

Malicious code in bioql PyPI...

CVE-2024-8512

The W3SPEEDSTER plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 7.26 via the 'script' parameter of the hookBeforeStartOptimization function. This is due to the plugin passing user supplied input to eval. This makes it possible for authenticated...

CVE-2025-23765

CVE-2025-23765 is a CSRF vulnerability in the WordPress plugin W3SPEEDSTER affecting versions up to 7.33 (listed as affected “from n/a through 7.33”). The vulnerability is publicly documented with a CVSS v3.1 base score of 4.3 (Medium) , attack vector Network , and UI: Required with Privileges: N...

CVE-2025-23765 WordPress W3SPEEDSTER plugin <= 7.33 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in w3speedster W3SPEEDSTER w3speedster-wp allows Cross Site Request Forgery.This issue affects W3SPEEDSTER: from n/a through = 7.33...

CVE-2025-23765 WordPress W3SPEEDSTER plugin <= 7.33 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in w3speedster W3SPEEDSTER w3speedster-wp allows Cross Site Request Forgery.This issue affects W3SPEEDSTER: from n/a through = 7.33...

WordPress W3SPEEDSTER plugin <= 7.26 - Authenticated (Administrator+) Remote Code Execution vulnerability

Authenticated Administrator+ Remote Code Execution vulnerability discovered by Lesor101 in WordPress Plugin W3SPEEDSTER versions = 7.26...