EUVD-2023-43925

Malicious code in bioql PyPI...

Malicious code in web3-plugin-swisstronik (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-6783 Malicious code in web3-plugin-swisstronik (npm)

The package communicates with a domain associated with malicious activity...

CVE-2023-3249

The Web3 – Crypto wallet Login & NFT token gating plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.6.0. This is due to incorrect authentication checking in the 'hiddenformdata' function. This makes it possible for authenticated attackers to log in as...

CVE-2023-6036

The Web3 WordPress plugin before 3.0.0 is vulnerable to an authentication bypass due to incorrect authentication checking in the login flow in functions 'handleauthrequest' and 'hadleloginrequest'. This makes it possible for non authenticated attackers to log in as any existing user on the site,...

CVE-2023-6036 Web3 – Crypto wallet Login & NFT token gating < 3.0.0 - Authentication Bypass

The Web3 WordPress plugin before 3.0.0 is vulnerable to an authentication bypass due to incorrect authentication checking in the login flow in functions 'handleauthrequest' and 'hadleloginrequest'. This makes it possible for non authenticated attackers to log in as any existing user on the site,...

WordPress Plugin Web3 Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

PT-2024-1507 · WordPress · Web3

Name of the Vulnerable Software and Affected Versions: Web3 WordPress plugin versions prior to 3.0.0 Description: The issue is related to an authentication bypass due to incorrect authentication checking in the login flow. This is caused by vulnerabilities in the handle auth request and handle...

CVE-2023-3249

The Web3 – Crypto wallet Login & NFT token gating plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.6.0. This is due to incorrect authentication checking in the 'hiddenformdata' function. This makes it possible for authenticated attackers to log in as...

PT-2023-23823 · WordPress · Web3

Name of the Vulnerable Software and Affected Versions: Web3 – Crypto wallet Login & NFT token gating plugin for WordPress versions up to, and including, 2.6.0 Description: The issue is related to incorrect authentication checking in the hidden form data function, allowing authenticated attackers ...