6 matches found
EUVD-2025-11776
Malicious code in bioql PyPI...
CVE-2025-39433
Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...
CVE-2025-39433
Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...
CVE-2025-39433
CVE-2025-39433 : The WordPress plugin Bknewsticker (beKe_ro) suffers a CSRF vulnerability in versions up to and including 1.0.5 that enables a Stored XSS payload. The CVE details (and corroborating Red Hat/patch sources) indicate the impact includes compromised confidentiality, integrity, and ava...
CVE-2025-39433 WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...
PT-2025-17000 · Unknown · Bknewsticker
Name of the Vulnerable Software and Affected Versions: Bknewsticker versions 1.0.5 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web application,...