16 matches found
CVE-2025-69304
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TeconceTheme Allmart allmart-core allows Blind SQL Injection.This issue affects Allmart: from n/a through = 1.1...
CVE-2025-69304
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TeconceTheme Allmart allmart-core allows Blind SQL Injection.This issue affects Allmart: from n/a through = 1.1...
CVE-2025-69304
CVE-2025-69304 affects WordPress Allmart plugin (allmart-core) up to version 1.1, with an unauthenticated Blind SQL Injection due to improper neutralization of SQL elements. CVSS 3.1 base score 9.3 (CRITICAL). Connected sources confirm the vulnerability description and affected versions, but do n...
CVE-2025-69304 WordPress Allmart plugin <= 1.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TeconceTheme Allmart allmart-core allows Blind SQL Injection.This issue affects Allmart: from n/a through = 1.1...
CVE-2025-69304 WordPress Allmart plugin <= 1.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TeconceTheme Allmart allmart-core allows Blind SQL Injection.This issue affects Allmart: from n/a through = 1.1...
PT-2026-21131
Name of the Vulnerable Software and Affected Versions TeconceTheme Allmart versions through 1.1 Description The software contains an Improper Neutralization of Special Elements used in an SQL Command vulnerability, specifically a Blind SQL Injection issue. This allows for potential exploitation...
WordPress plugin Allmart SQL注入漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...
WordPress Allmart plugin <= 1.1 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Allmart versions = 1.1...
EUVD-2025-20010
Malicious code in bioql PyPI...
CVE-2025-49418
Server-Side Request Forgery SSRF vulnerability in TeconceTheme Allmart allmart-core allows Server Side Request Forgery.This issue affects Allmart: from n/a through = 1.0.0...
CVE-2025-49418
Server-Side Request Forgery SSRF vulnerability in TeconceTheme Allmart allmart-core allows Server Side Request Forgery.This issue affects Allmart: from n/a through = 1.0.0...
CVE-2025-49418 WordPress Allmart plugin <= 1.0.0 - Server Side Request Forgery (SSRF) Vulnerability
Server-Side Request Forgery SSRF vulnerability in TeconceTheme Allmart allmart-core allows Server Side Request Forgery.This issue affects Allmart: from n/a through = 1.0.0...
CVE-2025-49418
CVE-2025-49418 affects WordPress Allmart (Allmart-core) plugins for versions n/a through 1.0.0, with a Server-Side Request Forgery (SSRF) vulnerability (CVSS v3.1: 7.2, HIGH). Public sources in the provided documents confirm the SSRF issue and list the patch status as Unpatched; no concrete remed...
CVE-2025-49418 WordPress Allmart plugin <= 1.0.0 - Server Side Request Forgery (SSRF) Vulnerability
Server-Side Request Forgery SSRF vulnerability in TeconceTheme Allmart allmart-core allows Server Side Request Forgery.This issue affects Allmart: from n/a through = 1.0.0...
WordPress plugin Allmart 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...
PT-2025-27925 · Unknown · Teconcetheme Allmart
Name of the Vulnerable Software and Affected Versions: TeconceTheme Allmart versions n/a through 1.0.0 Description: The issue is related to a Server-Side Request Forgery SSRF vulnerability, which allows for Server Side Request Forgery. This means an attacker can potentially trick the server into...