EUVD-2022-15570

Malicious code in bioql PyPI...

PT-2024-17461 · WordPress +1 · Autoblogging Seo Help +2

Name of the Vulnerable Software and Affected Versions: AI Content Writer, RSS Feed to Post, Autoblogging SEO Help plugin for WordPress versions up to, and including, 6.1.3 Description: The issue is related to Reflected Cross-Site Scripting via the page parameter due to insufficient input...

PT-2024-37752 · WordPress · The Rss Aggregator

Name of the Vulnerable Software and Affected Versions: The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress versions up to, and including, 4.23.11 Description: The issue allows authenticated attackers with Subscriber-level access and above to modify dat...

CVE-2023-45053 WordPress WP Content Pilot plugin <= 1.3.3 - HTML Injection vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in pluginever WP Content Pilot – Autoblogging & Affiliate Marketing Plugin allows Code Injection.This issue affects WP Content Pilot – Autoblogging & Affiliate Marketing Plugin: from n/a through 1.3.3...

WordPress WP Content Pilot – Autoblogging & Affiliate Marketing Plugin Plugin <= 1.3.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Content Pilot – Autoblogging & Affiliate Marketing Plugin Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47150 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership...

WordPress Content Egg plugin <= 5.4.0 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability leading to Autoblogging Removal discovered by Muhammad Daffa Patchstack Alliance in the WordPress Content Egg plugin versions = 5.4.0. Solution Update the WordPress Content Egg plugin to the latest available version at least 5.5.0...

CVE-2022-0428

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...

Cross site scripting

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...

Content Egg < 5.3.0 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting PoC...

WordPress Auto Robot – WP Autoblogging and RSS Feed News Aggregator plugin < 3.3.40 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Auto Robot – WP Autoblogging and RSS Feed News Aggregator plugin versions 3.3.40. Solution Update the WordPress Auto Robot – WP Autoblogging and RSS Feed News Aggregator plugin to the latest available...

WordPress Auto Robot – WP Autoblogging and RSS Feed News Aggregator plugin < 3.3.40 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Auto Robot – WP Autoblogging and RSS Feed News Aggregator plugin versions 3.3.40. Solution Update the WordPress Auto Robot – WP Autoblogging and RSS Feed News Aggregator plugin to the latest available version at least 3.3.40...