29 matches found
EUVD-2025-2996
Malicious code in bioql PyPI...
EUVD-2025-3019
Malicious code in bioql PyPI...
EUVD-2024-40211
Malicious code in bioql PyPI...
EUVD-2023-50345
Malicious code in bioql PyPI...
EUVD-2024-42556
Malicious code in bioql PyPI...
CVE-2025-22815
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Button Block button-block allows Stored XSS.This issue affects Button Block: from n/a through = 1.1.9...
CVE-2024-43319
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in bPlugins LLC Flash & HTML5 Video.This issue affects Flash & HTML5 Video: from n/a through 2.5.31...
CVE-2024-47631
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Logo Carousel – Clients logo carousel for WP responsive-client-logo-carousel-slider allows Stored XSS.This issue affects Logo Carousel – Clients logo carousel for WP: from n/a through = 1....
CVE-2023-46084
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bPlugins LLC Icons Font Loader allows SQL Injection.This issue affects Icons Font Loader: from n/a through 1.1.2...
CVE-2024-24714
Unrestricted Upload of File with Dangerous Type vulnerability in bPlugins LLC Icons Font Loader.This issue affects Icons Font Loader: from n/a through 1.1.4...
CVE-2025-22787
Missing Authorization vulnerability in bPlugins Button Block button-block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Button Block: from n/a through = 1.1.5...
CVE-2025-22787
CVE-2025-22787 is a Missing Authorization vulnerability in the WordPress plugin Button Block by bPlugins LLC , affecting versions up to 1.1.5. Per the provided documents, the CVE is associated with access to functions not properly constrained by ACLs, with a CVSS v3.1 base score of 8.8 (High) , a...
CVE-2025-22787 WordPress Button Block plugin <= 1.1.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in bPlugins Button Block button-block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Button Block: from n/a through = 1.1.5...
CVE-2025-22815
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Button Block button-block allows Stored XSS.This issue affects Button Block: from n/a through = 1.1.9...
CVE-2025-22815
CVE-2025-22815 describes a Stored XSS in Button Block plugin for WordPress (Button Block: from n/a through 1.1.6). The issue arises from improper neutralization of input during web page generation, enabling stored cross-site scripting. Affected software: Button Block (WordPress plugin). Root caus...
CVE-2024-43296
Missing Authorization vulnerability in bPlugins LLC Flash & HTML5 Video allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flash & HTML5 Video: from n/a through 2.5.30...
CVE-2024-43296 WordPress HTML5 Video Player plugin <= 2.5.30 - Broken Access Control vulnerability
Missing Authorization vulnerability in bPlugins LLC Flash & HTML5 Video allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flash & HTML5 Video: from n/a through 2.5.30...
CVE-2024-47631
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Logo Carousel – Clients logo carousel for WP responsive-client-logo-carousel-slider allows Stored XSS.This issue affects Logo Carousel – Clients logo carousel for WP: from n/a through = 1....
CVE-2024-47631
CVE-2024-47631: Stored XSS in Logo Carousel – Clients logo carousel for WP (bPlugins LLC) affecting WP plugin versions up to 1.2. Root cause is improper neutralization of input during web page generation. The issue is categorized as a stored XSS with low to moderate impact per CVSS (6.5, CVSS v3....
CVE-2024-47631 WordPress Logo Carousel – Clients logo carousel for WP plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Logo Carousel – Clients logo carousel for WP responsive-client-logo-carousel-slider allows Stored XSS.This issue affects Logo Carousel – Clients logo carousel for WP: from n/a through = 1....