WordPress plugin BP Better Messages 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

Zucchetti Axess CLOKI Access Control 跨站请求伪造漏洞

Zucchetti Axess CLOKI Access Control is an automation management software in access control terminals from Zucchetti, Italy. A cross-site request forgery vulnerability exists in Zucchetti Axess CLOKI Access Control version 1.64, which stems from a lack of validation of access control settings and...

EUVD-2018-11999

Malware in sbrugna...

EUVD-2023-24699

Malicious code in bioql PyPI...

EUVD-2025-14746

Malicious code in bioql PyPI...

CVE-2025-30636

CVE-2025-30636 (WordPress Accessibility Suite) is a Missing Authorization vulnerability affecting Accessibility Suite by Ability, Inc, listed as

CVE-2023-32585

Missing Authorization vulnerability in Total-Soft Portfolio Gallery – Responsive Image Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Portfolio Gallery – Responsive Image Gallery: from n/a through 1.4.6...

CVE-2025-48272

Missing Authorization vulnerability in wpjobportal WP Job Portal wp-job-portal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Portal: from n/a through = 2.3.2...

CVE-2025-24583

CVE-2025-24583 affects the WordPress plugin “12 Step Meeting List” up to version 3.16.5. The vulnerability is described as a Missing Authorization issue that allows exploitation due to incorrectly configured access control security levels. Documented impact: baseline CVSSv3.1 score around 6.5 (Me...

CVE-2025-31878 WordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 - Settings Change vulnerability

Missing Authorization vulnerability in Dmitry V. CEO of "UKR Solution" UPC/EAN/GTIN Code Generator upc-ean-barcode-generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UPC/EAN/GTIN Code Generator: from n/a through = 2.0.2...

CVE-2025-31780 WordPress Append Content plugin <= 2.1.1 - CSRF to Settings Change vulnerability

Missing Authorization vulnerability in Andy Stratton Append Content allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Append Content: from n/a through 2.1.1...

CVE-2020-35546

Lexmark MX6500 LW75.JD.P296 and previous devices have Incorrect Access Control via the access control settings...

CVE-2022-39070

There is an access control vulnerability in some ZTE PON OLT products. Due to improper access control settings, remote attackers could use the vulnerability to log in to the device and execute any operation...

CVE-2022-39070

There is an access control vulnerability in some ZTE PON OLT products. Due to improper access control settings, remote attackers could use the vulnerability to log in to the device and execute any operation...

PT-2022-17242 · Gradle · Gradle Enterprise

Name of the Vulnerable Software and Affected Versions: Gradle Enterprise versions prior to 2021.4.2 Description: The default built-in build cache configuration in Gradle Enterprise allowed anonymous write access, potentially enabling a malicious actor with network access to populate the cache wit...

The two did not repair the vulnerabilities affect the mainstream browser extension system-vulnerability warning-the black bar safety net

Security researchers found that the two did not fix the vulnerability embedded in many mainstream browsers in the expansion of the system, such as Firefox, Safari, and all with Chromium related browsers such as Chrome, Opera, etc. ! An attacker can exploit these vulnerabilities expose the user of...

Google Android Memory Access Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A security vulnerability exists in the access control settings for modem memory in Android. An attacker can exploit the vulnerability to perform unauthorized operations...