EUVD-2025-30708

Malicious code in bioql PyPI...

EUVD-2025-11698

Malicious code in bioql PyPI...

CVE-2025-57956

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcraft WooMS wooms allows Stored XSS.This issue affects WooMS: from n/a through = 9.12...

CVE-2025-57957

Missing Authorization vulnerability in wpcraft WooMS wooms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooMS: from n/a through = 9.12...

CVE-2025-57956

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcraft WooMS wooms allows Stored XSS.This issue affects WooMS: from n/a through = 9.12...

CVE-2025-57957

Missing Authorization vulnerability in wpcraft WooMS wooms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooMS: from n/a through = 9.12...

WordPress WooMS Plugin <= 9.12 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin WooMS versions = 9.12...

WordPress WooMS Plugin <= 9.12 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Nabil Irawan in WordPress Plugin WooMS versions = 9.12...

CVE-2025-57956

Technical details about CVE-2025-57956 are not provided in the connected documents. The available sources mention WooMS, and a separate CVE for WooMS, but do not disclose affected versions, exploit vectors, impact specifics, or fixes for this CVE. Monitor for updates.

CVE-2025-57956 WordPress WooMS Plugin <= 9.12 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcraft WooMS wooms allows Stored XSS.This issue affects WooMS: from n/a through = 9.12...

CVE-2025-57956 WordPress WooMS Plugin <= 9.12 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcraft WooMS allows Stored XSS. This issue affects WooMS: from n/a through 9.12...

CVE-2025-57957 WordPress WooMS Plugin <= 9.12 - Broken Access Control Vulnerability

Missing Authorization vulnerability in wpcraft WooMS wooms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooMS: from n/a through = 9.12...

CVE-2025-57957 WordPress WooMS Plugin <= 9.12 - Broken Access Control Vulnerability

Missing Authorization vulnerability in wpcraft WooMS wooms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooMS: from n/a through = 9.12...

CVE-2025-57957

CVE-2025-57957 (WooMS) : Missing Authorization in WooMS (WooCommerce integration by wooms) affecting version range up to 9.12. CVSS 3.1 shows Network attack, no user interaction, no confidentiality but partial integrity impact; base score 5.3 (Medium). Wordfence/WooMS entry confirms the vulnerabi...

WordPress plugin WooMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

WordPress plugin WooMS 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site...

PT-2025-38807

Name of the Vulnerable Software and Affected Versions wpcraft WooMS versions through 9.12 Description An authorization issue exists in wpcraft WooMS, allowing exploitation due to incorrectly configured access control security levels. Recommendations At the moment, there is no information about a...

PT-2025-38806

Name of the Vulnerable Software and Affected Versions wpcraft WooMS versions through 9.12 Description The software contains a flaw related to improper input handling during web page generation, specifically a Stored Cross-site Scripting issue. This allows for the injection of malicious scripts. T...

CVE-2025-32602

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcraft WooMS wooms allows Reflected XSS.This issue affects WooMS: from n/a through = 9.12...

CVE-2025-32602

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcraft WooMS wooms allows Reflected XSS.This issue affects WooMS: from n/a through = 9.12...