441 matches found
EUVD-2025-4803
Malicious code in bioql PyPI...
EUVD-2024-34373
Malicious code in bioql PyPI...
EUVD-2024-33548
Malicious code in bioql PyPI...
EUVD-2024-32603
Malicious code in bioql PyPI...
EUVD-2024-32704
Malicious code in bioql PyPI...
EUVD-2025-10471
Malicious code in bioql PyPI...
EUVD-2024-54452
Malicious code in bioql PyPI...
EUVD-2025-7393
Malicious code in bioql PyPI...
EUVD-2025-5894
Malicious code in bioql PyPI...
EUVD-2024-54337
Malicious code in bioql PyPI...
EUVD-2025-12293
Malicious code in bioql PyPI...
WordPress Everest Forms plugin <= 3.4.1 - Arbitrary Shortcode Execution vulnerability
Arbitrary Shortcode Execution vulnerability discovered by Najib Sinjari in WordPress Plugin Everest Forms versions = 3.4.1...
CVE-2025-9489
The The WP-Members Membership Plugin plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.5.4.2. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it...
CVE-2025-32688
CVE-2025-32688 targets the Sovica/Target Video Easy Publish WordPress plugin. Versions up to 3.8.8 are affected by a Missing Authorization vulnerability (privilege escalation) as described in the CVE entry. Public details across connected docs confirm affected product (Target Video Easy Publish),...
CVE-2025-32688 WordPress Target Video Easy Publish plugin <= 3.8.9 - Arbitrary Code Execution vulnerability
Missing Authorization vulnerability in Nebojsa Target Video Easy Publish brid-video-easy-publish.This issue affects Target Video Easy Publish: from n/a through = 3.8.9...
CVE-2025-7366 Rehub <= 19.9.7 - Unauthenticated Arbitrary Shortcode Execution via re_filterpost
The The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 19.9.7. This is due to the software allowing users to execute an action that does not properly validate a value befor...
CVE-2025-8878
The The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.16.4. This is due to the software allowing users to execute an...
CVE-2025-8878
The The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.16.4. This is due to the software allowing users to execute an...
CVE-2025-8878 Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.16.4 - Unauthenticated Arbitrary Shortcode Execution
The The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.16.4. This is due to the software allowing users to execute an...
PT-2025-33590 · WordPress · Soledad Wordpress Theme
Name of the Vulnerable Software and Affected Versions: Soledad WordPress Theme versions prior to 8.6.8 Description: The Soledad theme for WordPress is susceptible to arbitrary shortcode execution. This occurs because the software does not properly validate a value before running do shortcode,...