14 matches found
WordPress Integrio Core plugin < 1.2.8 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Integrio Core versions 1.2.8...
CVE-2025-64233
Deserialization of Untrusted Data vulnerability in BoldThemes Codiqa codiqa allows Object Injection.This issue affects Codiqa: from n/a through 1.2.8...
EUVD-2025-204070
Deserialization of Untrusted Data vulnerability in BoldThemes Codiqa codiqa allows Object Injection.This issue affects Codiqa: from n/a through 1.2.8...
WordPress plugin Codiqa 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
PT-2025-52175
Deserialization of Untrusted Data vulnerability in BoldThemes Codiqa codiqa allows Object Injection.This issue affects Codiqa: from n/a through 1.2.8...
AZL-69818 CVE-2025-31133 affecting package moby-runc for versions less than 1.2.8-1
runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...
CVE-2025-8046
The Injection Guard WordPress plugin before 1.2.8 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...
PT-2025-33128 · WordPress · Injection Guard
Name of the Vulnerable Software and Affected Versions: Injection Guard WordPress plugin versions prior to 1.2.8 Description: The Injection Guard WordPress plugin does not properly escape the $ SERVER'REQUEST URI' parameter before displaying it within an attribute. This could lead to Reflected...
PT-2024-27172 · Ebookmeta · Ebookmeta
Name of the Vulnerable Software and Affected Versions: ebookmeta versions prior to 1.2.8 Description: An XML External Entity XXE vulnerability in the ebookmeta.get metadata function allows attackers to access sensitive information or cause a Denial of Service DoS via crafted XML input...
ebookmeta Security Vulnerabilities
ebookmeta is a Python library for managing metadata for epub2, epub3, and fb2 files by Dmitrii Personal Developer. A security vulnerability exists in ebookmeta versions prior to v1.2.8, which stems from an XML External Entity vulnerability in the ebookmeta.getmetadata function that could allow an...
WordPress plugin ruddernation TinyChat Room Spy 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin ruddernati...
WordPress plugin WP Popup Builder 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2022-19623 · WordPress · Opal Hotel Room Booking
Name of the Vulnerable Software and Affected Versions: Opal Hotel Room Booking plugin versions prior to 1.2.8 Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with contributor or higher user role can inject malicious...
PT-2019-5226 · Cacti +2 · Cacti +2
Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.8 Description: The issue affects how template identifiers are handled in Cacti when a string and a composite id value are used. This can be exploited by an authenticated attacker to extract data from the database...