15 matches found
EUVD-2025-13805
Malicious code in bioql PyPI...
WordPress AWEOS WP Lock plugin cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress AWEOS WP Lock plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...
CVE-2025-47522
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...
CVE-2025-47522
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...
CVE-2025-47522
CVE-2025-47522 affects AWEOS WP Lock (WordPress plugin) via a Stored XSS in input handling during web page generation. Affected: AWEOS WP Lock versions up to 1.4.8. Root cause: improper neutralization of input during page generation. Impact per available data: low-to-moderate (CVE score ~5.9; Con...
CVE-2025-47522 WordPress AWEOS WP Lock <= 1.4.8 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock allows Stored XSS. This issue affects AWEOS WP Lock: from n/a through 1.4.8...
CVE-2025-47522 WordPress AWEOS WP Lock plugin <= 1.4.8 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...
WordPress plugin AWEOS WP Lock 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress AWEOS WP Lock plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...
PT-2025-20144 · Unknown · Aweos Wp Lock
Name of the Vulnerable Software and Affected Versions: AWEOS WP Lock versions 1.4.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject malicious...
CVE-2025-26741
Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...
CVE-2025-26741
Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...
CVE-2025-26741 WordPress Email Notifications for Updates <= 1.1.6 - Privilege Escalation Vulnerability
Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...
CVE-2025-26741
CVE-2025-26741 concerns the WordPress plugin Email Notifications for Updates (also reflected as AWEOS GmbH Email Notifications for Updates) page up to version 1.1.6. The connected documents confirm a Missing Authorization vulnerability that allows privilege escalation, with CVSSv3.1 baseline metr...
CVE-2025-26741 WordPress Email Notifications for Updates <= 1.1.6 - Privilege Escalation Vulnerability
Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...
PT-2025-16312 · Aweos Gmbh · Aweos Gmbh Email Notifications For Updates
Name of the Vulnerable Software and Affected Versions: AWEOS GmbH Email Notifications for Updates versions 1.1.6 and earlier Description: The issue is related to a Missing Authorization vulnerability that allows Privilege Escalation in AWEOS GmbH Email Notifications for Updates. Recommendations:...