EUVD-2026-10028

QuickCMS is vulnerable to Cross-Site Request Forgery across multiple endpoints. An attacker can craft special website, which when visited by the victim, will automatically send a POST request with victim's privileges. This software does not implement any protection against this type of attack. Al...

WordPress Automatic Post Categories Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Automatic Post Categories Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID de6bb02932f9 Credits Rafie Muhammad Patchstack...

WordPress Automatic Post Categories plugin <= 1.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Automatic Post Categories plugin versions = 1.0. Solution No patched version available...

WordPress Automatic Post Categories plugin <= 1.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Automatic Post Categories plugin versions = 1.0. Solution No patched version available...