25 matches found
EUVD-2022-44814
Malicious code in bioql PyPI...
EUVD-2025-10605
Malicious code in bioql PyPI...
EUVD-2022-49593
Malicious code in bioql PyPI...
MAL-2025-43116 Malicious code in @zalastax/nolb-ald (npm)
The package @zalastax/nolb-ald was found to contain malicious code...
Malicious code in @zalastax/nolb-ald (npm)
The package @zalastax/nolb-ald was found to contain malicious code...
MAL-2025-9753 Malicious code in @zalastax/nolb-_ald (npm)
The package @zalastax/nolb-ald was found to contain malicious code...
CVE-2022-46811
Missing Authorization vulnerability in VillaThemevillatheme.com ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce: from n/a...
CVE-2025-32518
Cross-Site Request Forgery CSRF vulnerability in hossainawlad ALD Login Page ald-login-page allows Stored XSS.This issue affects ALD Login Page: from n/a through = 1.1...
CVE-2025-32518
Cross-Site Request Forgery CSRF vulnerability in hossainawlad ALD Login Page ald-login-page allows Stored XSS.This issue affects ALD Login Page: from n/a through = 1.1...
CVE-2025-32518 WordPress ALD Login Page plugin <= 1.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in hossainawlad ALD Login Page ald-login-page allows Stored XSS.This issue affects ALD Login Page: from n/a through = 1.1...
CVE-2025-32518
CVE-2025-32518 is a CSRF-to-Stored XSS vulnerability in the ALD Login Page. Affected software: ALD Login Page (vulnerable range includes
CVE-2025-32518 WordPress ALD Login Page plugin <= 1.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in hossainawlad ALD Login Page allows Stored XSS. This issue affects ALD Login Page: from n/a through 1.1...
WordPress ALD Login Page plugin <= 1.1 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin ALD Login Page versions = 1.1...
PT-2025-15784 · Unknown · Hossainawlad Ald Login Page
Name of the Vulnerable Software and Affected Versions: hossainawlad ALD Login Page versions n/a through 1.1 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that also allows Stored XSS in the hossainawlad ALD Login Page. Recommendations: For versions n/a throug...
WordPress plugin ALD Login Page 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
CVE-2022-46811
Missing Authorization vulnerability in VillaThemevillatheme.com ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce: from n/a...
CVE-2022-46811
CVE-2022-46811 affects the WordPress plugin ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce (VillaTheme) up to version 1.0.21. The root cause is Missing Authorization / Access Control allowing broken access control and CSRF-related issues. The CVSSv3.1 base score is 4.3 (Medium)...
WordPress ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce Plugin <= 1.0.21 is vulnerable to Broken Access Control
Software ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce Type Plugin Vulnerable versions = 1.0.21 Fixed in 1.0.22 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-46811 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSI...
CVE-2022-41623
Sensitive Data Exposure in Villatheme ALD - AliExpress Dropshipping and Fulfillment for WooCommerce premium plugin = 1.1.0 on WordPress...
Code injection
Sensitive Data Exposure in Villatheme ALD - AliExpress Dropshipping and Fulfillment for WooCommerce premium plugin = 1.1.0 on WordPress...