106 matches found
CVE-2024-12920
CVE-2024-12920 affects FoodBakery | Delivery Restaurant WordPress Theme (
CVE-2025-22630
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Marketing Fire Widget Options widget-options allows OS Command Injection.This issue affects Widget Options: from n/a through = 4.1.0...
CVE-2025-22630
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Marketing Fire Widget Options widget-options allows OS Command Injection.This issue affects Widget Options: from n/a through = 4.1.0...
CVE-2025-22630 WordPress Widget Options Plugin <= 4.1.0 - Arbitrary Code Execution vulnerability
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in MarketingFire Widget Options allows OS Command Injection.This issue affects Widget Options: from n/a through 4.1.0...
WordPress plugin Widget Options 命令注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A command injection...
PT-2025-6951 · Unknown · Marketingfire Widget Options
Name of the Vulnerable Software and Affected Versions: MarketingFire Widget Options versions n/a through 4.1.0 Description: The issue is related to an Improper Neutralization of Special Elements used in a Command, also known as a Command Injection vulnerability, in MarketingFire Widget Options...
WordPress Widget Options Plugin <= 4.1.0 - Arbitrary Code Execution vulnerability
Arbitrary Code Execution vulnerability discovered by Tran Nguyen Bao Khanh in WordPress Plugin Widget Options versions = 4.1.0...
CVE-2024-8672
The Widget Options – The 1 WordPress Widget & Block Control Plugin plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.0.7 via the display logic functionality that extends several page builders. This is due to the plugin allowing users to supply inp...
CVE-2025-22722
Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.8...
CVE-2025-22722
Technical details about CVE-2025-22722 are not provided in the connected documents. The initial entry notes a Missing Authorization issue in Widget Options plugin versions up to 4.0.8, but no technical specifics or affected product/version data are disclosed here. Monitor for updates.
CVE-2025-22722 WordPress Widget Options plugin <= 4.0.8 - Broken Access Control to Notice Dimissal vulnerability
Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.8...
CVE-2025-22722 WordPress Widget Options plugin <= 4.0.8 - Broken Access Control to Notice Dimissal vulnerability
Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.8...
WordPress plugin Widget Options 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress Widget Options plugin <= 4.0.8 - Broken Access Control to Notice Dimissal vulnerability
Broken Access Control to Notice Dimissal vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Widget Options versions = 4.0.8...
CVE-2024-56219
Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.6.1...
CVE-2024-56219
Missing Authorization vulnerability in MarketingFire Widget Options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through 4.0.6.1...
CVE-2024-56219 WordPress Widget Options plugin <= 4.0.6.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in MarketingFire Widget Options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through 4.0.6.1...
CVE-2024-56219
The CVE-2024-56219 entry describes a Missing Authorization vulnerability in WordPress Widget Options plugin, affecting versions up to 4.0.6.1. The underlying issue is broken/authentication-guarded access control in the Widget Options configuration, enabling exploitation of insufficient access che...
CVE-2024-56219 WordPress Widget Options plugin <= 4.0.6.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Marketing Fire Widget Options widget-options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through = 4.0.6.1...
WordPress plugin Widget Options 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...