EUVD-2024-28408

Malicious code in bioql PyPI...

EUVD-2024-42546

Malicious code in bioql PyPI...

CVE-2025-4666

The Zotpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nickname’ parameter in all versions up to, and including, 7.3.15 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and...

CVE-2025-4666 ZotPress <= 7.3.15 - Authenticated (Author+) Stored Cross-Site Scripting via 'nickname'

The Zotpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nickname’ parameter in all versions up to, and including, 7.3.15 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and...

PT-2025-25179 · WordPress · Zotpress

Name of the Vulnerable Software and Affected Versions: Zotpress plugin for WordPress versions up to, and including, 7.3.15 Description: The issue is related to Stored Cross-Site Scripting via the nickname parameter due to insufficient input sanitization and output escaping. This allows...

CVE-2024-34569

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Katie Zotpress zotpress.This issue affects Zotpress: from n/a through = 7.3.9...

WordPress plugin Zotpress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

CVE-2024-30488

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Katie Seaborn Zotpress.This issue affects Zotpress: from n/a through 7.3.7...