66 matches found
PT-2025-53911
Name of the Vulnerable Software and Affected Versions Mikado-Themes Backpack Traveler versions through 2.10.3 Description An authorization bypass exists in Mikado-Themes Backpack Traveler due to incorrectly configured access control security levels. This allows exploitation through a...
WordPress Backpack Traveler theme <= 2.10.3 - Insecure Direct Object References (IDOR) vulnerability
Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Backpack Traveler versions = 2.10.3...
EUVD-2022-2792
Malicious code in bioql PyPI...
EUVD-2024-3216
Malicious code in bioql PyPI...
EUVD-2025-27960
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2019-3809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Moodle versions 3.1 to 3.1.15 and earlier unsupported versions. The mybackpack functionality allowed setting the URL of badges, when it shou...
Malicious code in nodejs-backpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bb99e7712a778eec132a6648afa1e407630ce06d816611aade3e1e1986562f0a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-39490
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler backpacktraveler allows PHP Local File Inclusion.This issue affects Backpack Traveler: from n/a through = 2.10.2...
CVE-2025-39490
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler backpacktraveler allows PHP Local File Inclusion.This issue affects Backpack Traveler: from n/a through = 2.10.2...
CVE-2025-39490
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler allows PHP Local File Inclusion. This issue affects Backpack Traveler: from n/a through 2.7...
CVE-2025-39490
CVE-2025-39490 affects Backpack Traveler (Mikado-Themes)
CVE-2025-39490 WordPress Backpack Traveler <= 2.7 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler allows PHP Local File Inclusion. This issue affects Backpack Traveler: from n/a through 2.7...
CVE-2025-39490 WordPress Backpack Traveler theme <= 2.10.2 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Backpack Traveler backpacktraveler allows PHP Local File Inclusion.This issue affects Backpack Traveler: from n/a through = 2.10.2...
CVE-2024-4756
The WP Backpack WordPress plugin through 2.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
PT-2025-22703
Name of the Vulnerable Software and Affected Versions Mikado-Themes Backpack Traveler versions n/a through 2.7 Description The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File...
WordPress plugin Backpack Traveler 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CVE-2018-20962
The Backpack\CRUD Backpack component before 3.4.9 for Laravel allows XSS via the select field type...
WordPress Backpack Traveler theme <= 2.10.2 - Local File Inclusion Vulnerability
Local File Inclusion Vulnerability discovered by Bonds in WordPress Theme Backpack Traveler versions = 2.10.2...
WordPress Backpack Traveler Theme <= 2.7 is vulnerable to Local File Inclusion
Software Backpack Traveler Type Theme Vulnerable versions = 2.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-39490 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 742d0ba975f3 Credits Bonds Required privilege Unauthenticated...
Malicious code in backpack-android (npm)
--- -= Per source details. Do not edit below this line.=-...