129 matches found
EUVD-2024-33069
Malicious code in bioql PyPI...
EUVD-2025-24714
Malicious code in bioql PyPI...
WordPress plugin Blogger Buzz cross-site scripting vulnerability
WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Blogger Buzz 1.2.6 and previous versions of cross-site scripting vulnerability , the...
CVE-2025-54680
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sparklewpthemes Blogger Buzz blogger-buzz allows Stored XSS.This issue affects Blogger Buzz: from n/a through = 1.2.6...
CVE-2025-54680
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sparklewpthemes Blogger Buzz blogger-buzz allows Stored XSS.This issue affects Blogger Buzz: from n/a through = 1.2.6...
CVE-2025-54680 WordPress Blogger Buzz Theme theme <= 1.2.6 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sparklewpthemes Blogger Buzz blogger-buzz allows Stored XSS.This issue affects Blogger Buzz: from n/a through = 1.2.6...
CVE-2025-54680 WordPress Blogger Buzz Theme theme <= 1.2.6 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sparkle Themes Blogger Buzz allows Stored XSS. This issue affects Blogger Buzz: from n/a through 1.2.6...
CVE-2025-54680
CVE-2025-54680 is a Stored XSS in the Blogger Buzz WordPress theme by Sparkle Themes, affecting Blogger Buzz versions up to 1.2.6. Root cause: improper neutralization of input during web page generation. CVSS v3.1 base score 6.5 (Medium); attack vector network, low complexity, user interaction re...
WordPress plugin Blogger Buzz 跨站脚本漏洞
WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Blogger Buzz 1.2.6 and previous versions of cross-site scripting vulnerability , the...
PT-2025-33232 · Unknown · Sparkle Themes Blogger Buzz
Name of the Vulnerable Software and Affected Versions: Sparkle Themes Blogger Buzz versions through 1.2.6 Description: Improper neutralization of input during web page generation allows for stored cross-site scripting XSS. Recommendations: Update to a version later than 1.2.6...
WordPress Blogger Buzz Theme theme <= 1.2.6 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Peter Thaleikis in WordPress Theme Blogger Buzz versions = 1.2.6...
CVE-2025-5632
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/users.php. The manipulation of the argument changetoadmin leads to sql injection. T...
CVE-2025-5633
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/users.php. The manipulation of the argument delete leads to sql injection. The attack may be...
CVE-2025-5632
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/users.php. The manipulation of the argument changetoadmin leads to sql injection. T...
CVE-2025-5633 code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/users.php. The manipulation of the argument delete leads to sql injection. The attack may be...
CVE-2025-5633 code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/users.php. The manipulation of the argument delete leads to sql injection. The attack may be...
CVE-2025-5633
CVE-2025-5633 affects code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. The vulnerability is a SQL injection in the /admin/users.php file caused by manipulation of the delete argument. It is exploitable remotely and the exploit has been publicly disclosed. The CVSS data in ...
CVE-2025-5632 code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/users.php. The manipulation of the argument changetoadmin leads to sql injection. T...
CVE-2025-5632 code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/users.php. The manipulation of the argument changetoadmin leads to sql injection. T...
CVE-2025-5632
CVE-2025-5632 affects code-projects/anirbandutta9 Content Management System/News-Buzz 1.0. The vulnerability is a SQL injection in the file /admin/users.php caused by manipulating the change_to_admin parameter. It is exploitable remotely over the network, and public exploits have been disclosed. ...