12 matches found
EUVD-2025-3205
Malicious code in bioql PyPI...
CVE-2025-23486
Missing Authorization vulnerability in tamlyn Database Sync database-sync allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Database Sync: from n/a through = 0.5.1...
CVE-2025-23486
Missing Authorization vulnerability in tamlyn Database Sync database-sync allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Database Sync: from n/a through = 0.5.1...
CVE-2025-23486 WordPress Database Sync plugin <= 0.5.1 - Sensitive Data Exposure vulnerability
Missing Authorization vulnerability in tamlyn Database Sync database-sync allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Database Sync: from n/a through = 0.5.1...
CVE-2025-23486 WordPress Database Sync plugin <= 0.5.1 - Sensitive Data Exposure vulnerability
Missing Authorization vulnerability in NotFound Database Sync allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Database Sync: from n/a through 0.5.1...
CVE-2025-23486
CVE-2025-23486 references a Missing Authorization vulnerability in the WordPress plugin Database Sync (affected: up to version 0.5.1). The issue is described as an authenticated sensitive information exposure resulting from insufficient access control on Database Sync, enabling an attacker with s...
WordPress plugin Database Sync 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress Database Sync plugin <= 0.5.1 - Sensitive Data Exposure vulnerability
Sensitive Data Exposure vulnerability discovered by Mika in WordPress Plugin Database Sync versions = 0.5.1...
WordPress Database Sync Plugin <= 0.4 - Cross Site Scripting (XSS)
This plugin is prone to a cross site scripting vulnerability, because "url" parameter is printed directly to the page without sanitization. Solution Update the plugin...
WordPress Database Sync 0.4 Cross Site Scripting Vulnerability
WordPress Database Sync plugin version 0.4 suffers from a cross site scripting vulnerability. Title: WordPress 'Database Sync' Plugin Version: 0.4 Author: Morten Nørtoft, Kenneth Jepsen & Mikkel Vej Download: - https://wordpress.org/plugins/database-sync/ -...
Database Sync <= 0.4 - Reflected Cross-Site Scripting (XSS)
The Database Sync WordPress plugin was affected by a Reflected Cross-Site Scripting XSS security vulnerability...
WordPress Database Sync 0.4 Cross Site Scripting
Title: WordPress 'Database Sync' Plugin Version: 0.4 Author: Morten Nørtoft, Kenneth Jepsen & Mikkel Vej Download: - https://wordpress.org/plugins/database-sync/ - https://plugins.svn.wordpress.org/database-sync/ ========================================================== Plugin description...