14 matches found
EUVD-2022-43515
Malicious code in bioql PyPI...
EUVD-2022-38127
Malicious code in bioql PyPI...
CVE-2024-9546
The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.9. This is due to the plugin utilizing the PHP-Parser library, which outputs parser rebuild command execution results. This makes it possible for...
CVE-2022-2261
The WPIDE WordPress plugin before 3.0 does not sanitize and validate the filename parameter before using it in a require statement in the admin dashboard, leading to a Local File Inclusion issue...
PT-2024-39690 · Unknown +1 · Php-Parser +1
Name of the Vulnerable Software and Affected Versions: WPIDE – File Manager & Code Editor plugin for WordPress versions up to, and including, 3.4.9 Description: The WPIDE – File Manager & Code Editor plugin for WordPress is vulnerable to Full Path Disclosure. This issue arises from the plugin's...
CVE-2022-40217
Authenticated admin+ Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...
CVE-2022-40217 WordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Edit/Upload vulnerability
Authenticated admin+ Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...
CVE-2022-40217
CVE-2022-40217 concerns the WordPress WPide plugin (XplodedThemes) versions ≤ 2.6, with an authenticated ARBITRARY FILE EDIT/UPLOAD vulnerability. Multiple sources confirm that an admin+ user can edit/upload arbitrary files within WPide, indicating a high impact under the documented conditions. P...
CVE-2022-40217 WordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Edit/Upload vulnerability
Authenticated admin+ Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...
CVE-2022-2261
The WPIDE WordPress plugin before 3.0 does not sanitize and validate the filename parameter before using it in a require statement in the admin dashboard, leading to a Local File Inclusion issue...
PT-2022-15562 · WordPress · Wpide
Name of the Vulnerable Software and Affected Versions: WPIDE WordPress plugin versions prior to 3.0 Description: The issue arises from the lack of sanitization and validation of the filename parameter before it is used in a require statement within the admin dashboard, leading to a Local File...
CVE-2022-35235
Authenticated admin+ Arbitrary File Read vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...
CVE-2022-35235
Authenticated admin+ Arbitrary File Read vulnerability in XplodedThemes WPide plugin = 2.6 at WordPress...
PT-2022-22644 · WordPress · Xplodedthemes Wpide
Name of the Vulnerable Software and Affected Versions: XplodedThemes WPide plugin versions = 2.6 Description: The issue is an Authenticated Arbitrary File Read vulnerability. This means that an attacker with admin+ privileges can read arbitrary files. The estimated number of potentially affected...