16 matches found
CVE-2026-39654
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani WP Simple HTML Sitemap wp-simple-html-sitemap allows DOM-Based XSS.This issue affects WP Simple HTML Sitemap: from n/a through = 3.8...
EUVD-2023-50829
Malicious code in bioql PyPI...
EUVD-2023-49388
Malicious code in bioql PyPI...
EUVD-2025-9616
Malicious code in bioql PyPI...
EUVD-2025-11737
Malicious code in bioql PyPI...
CVE-2025-39521 WordPress Contact Form vCard Generator plugin <= 2.4 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani Contact Form vCard Generator contact-form-vcard-generator allows Reflected XSS.This issue affects Contact Form vCard Generator: from n/a through = 2.4...
PT-2025-15822 · WordPress · Wp Show Stats
Name of the Vulnerable Software and Affected Versions: Ashish Ajani WP Show Stats versions n/a through 1.5 Description: A Cross-Site Request Forgery CSRF issue allows unauthorized actions to be performed on behalf of a user. This issue affects the WP Show Stats plugin, enabling Cross Site Request...
CVE-2025-31582
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani Contact Form vCard Generator contact-form-vcard-generator allows Stored XSS.This issue affects Contact Form vCard Generator: from n/a through = 2.4...
CVE-2025-31822 WordPress WordPress Simple HTML Sitemap plugin <= 3.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ashish Ajani WP Simple HTML Sitemap wp-simple-html-sitemap allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Simple HTML Sitemap: from n/a through = 3.5...
CVE-2023-49850 WordPress WP Simple HTML Sitemap plugin <= 2.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ashish Ajani WP Simple HTML Sitemap allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Simple HTML Sitemap: from n/a through 2.7...
CVE-2024-32574
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani WP Simple HTML Sitemap allows Reflected XSS.This issue affects WP Simple HTML Sitemap: from n/a through 2.8...
CVE-2024-32574
CVE-2024-32574 is a Reflected XSS in the WordPress plugin WP Simple HTML Sitemap, affecting versions <= 2.8. The flaw arises from improper neutralization of input during page generation, enabling attackers to inject scripts via input parameters. The vulnerability is documented as patched in ve...
CVE-2023-46627
CVE-2023-46627 affects WordPress plugin WP Simple HTML Sitemap (wp-simple-html-sitemap) up to version 2.2. The vulnerability is an unauthenticated Cross-Site Scripting (XSS) via the id parameter (Reflected XSS). Patch/mitigation: upgrade to version 2.3 or later. This CVE entry is supported by Pat...
CVE-2023-45067
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin = 2.1 versions...
CVE-2023-45067
The CVE-2023-45067 affects WordPress plugin WordPress Simple HTML Sitemap (
CVE-2023-45067 WordPress WP Simple HTML Sitemap Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin = 2.1 versions...