PT-2026-46181

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Tips and Tricks HQ WP eMember allows Retrieve Embedded Sensitive Data. This issue affects WP eMember: from n/a through v10.2.2...

CVE-2026-39564

Insertion of Sensitive Information Into Sent Data vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Retrieve Embedded Sensitive Data.This issue affects Sunshine Photo Cart: from n/a through 3.6.2...

CVE-2025-67931

CVE-2025-67931 affects BulletProof Security (WordPress plugin). An unauthenticated vulnerability allows sensitive information to be exposed via insertion of sensitive data into sent data. Public details indicate affected versions range up to 6.9, with Wordfence noting an unauthenticated sensitive...

CVE-2025-62998 WordPress WP AI CoPilot plugin <= 1.2.7 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in WP Messiah WP AI CoPilot ai-co-pilot-for-wp allows Retrieve Embedded Sensitive Data.This issue affects WP AI CoPilot: from n/a through = 1.2.7...

EUVD-2023-58750

Malicious code in bioql PyPI...

EUVD-2022-40724

Malicious code in bioql PyPI...

EUVD-2025-25331

Malicious code in bioql PyPI...

EUVD-2025-1717

Malicious code in bioql PyPI...

EUVD-2025-7170

Malicious code in bioql PyPI...

EUVD-2025-1718

Malicious code in bioql PyPI...

EUVD-2024-50448

Malicious code in bioql PyPI...

CVE-2025-60140 WordPress The Tribal Plugin <= 1.3.3 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in thetechtribe The Tribal the-tech-tribe allows Retrieve Embedded Sensitive Data.This issue affects The Tribal: from n/a through = 1.3.3...

IBM Concert Software 安全漏洞

IBM Concert Software is IBM's generative AI-driven automated application management and monitoring tool based on the WatsonX platform, focused on optimizing the operational efficiency and reliability of applications. IBM Concert Software suffers from an excessive data exposure vulnerability that...

CVE-2025-50341

CVE-2025-50341 affects Axelor 5.2.4, with a Boolean-based SQL injection via the _domain parameter that can alter query logic and lead to data exposure or further exploitation. The vulnerability is documented across multiple feeds and is rated high (CVSS v3.1 base score 9.8, CRITICAL impact to con...

CVE-2025-31955

HCL iAutomate is affected by a sensitive data exposure vulnerability. This issue may allow unauthorized access to sensitive information within the system...

CVE-2025-31955 HCL iAutomate is affected by a sensitive data exposure vulnerability

HCL iAutomate is affected by a sensitive data exposure vulnerability. This issue may allow unauthorized access to sensitive information within the system...

WordPress Contact Form by Bit Form plugin <= 2.17.5 - Unauthenticated Sensitive Information Exposure vulnerability

Unauthenticated Sensitive Information Exposure vulnerability discovered by Tim Coen in WordPress Plugin Bit Form versions = 2.17.5...

Devolutions Remote Desktop Manager < 2025.1.37.0 Data Exposure (DEVO-2025-0009)

The version of Devolutions Remote Desktop Manager installed on the remote host is prior to 2025.1.37.0 or prior and is, therefore, affected by a private information exposure vulnerability. This could allow an authenticated user to gain unauthorized access to private personal information. Under...

CVE-2025-47541 WordPress Mail Mint plugin <= 1.17.7 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in WPFunnels Mail Mint mail-mint allows Retrieve Embedded Sensitive Data.This issue affects Mail Mint: from n/a through = 1.17.7...

WordPress Prevent Direct Access – Protect WordPress Files plugin <= 2.8.8 - Unauthenticated Sensitive Information Exposure vulnerability

Unauthenticated Sensitive Information Exposure vulnerability discovered by Tom Broucke in WordPress Plugin Prevent Direct Access versions = 2.8.8...