EUVD-2023-53174

Malicious code in bioql PyPI...

EUVD-2025-3845

Malicious code in bioql PyPI...

EUVD-2023-58124

Malicious code in bioql PyPI...

CVE-2025-24647

Cross-Site Request Forgery CSRF vulnerability in datafeedr WooCommerce Cloak Affiliate Links woocommerce-cloak-affiliate-links allows Cross Site Request Forgery.This issue affects WooCommerce Cloak Affiliate Links: from n/a through = 1.0.35...

CVE-2023-49169

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in datafeedr.Com Ads by datafeedr.Com allows Stored XSS.This issue affects Ads by datafeedr.Com: from n/a through 1.2.0...

CVE-2025-24647 WordPress WooCommerce Cloak Affiliate Links plugin <= 1.0.35 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in datafeedr.com WooCommerce Cloak Affiliate Links allows Cross Site Request Forgery. This issue affects WooCommerce Cloak Affiliate Links: from n/a through 1.0.35...

CVE-2023-49169

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in datafeedr.Com Ads by datafeedr.Com allows Stored XSS.This issue affects Ads by datafeedr.Com: from n/a through 1.2.0...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in datafeedr.Com Ads by datafeedr.Com allows Stored XSS.This issue affects Ads by datafeedr.Com: from n/a through 1.2.0...

CVE-2023-49169

CVE-2023-49169 affects the WordPress plugin Ads by datafeedr.com (versions ≤ 1.2.0). The issue is an improper input neutralization during web page generation , resulting in a Stored Cross-Site Scripting (XSS) vulnerability. Impact details in the sources indicate exploitation could occur via injec...

CVE-2023-49169 WordPress Ads by datafeedr.com Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in datafeedr.Com Ads by datafeedr.Com allows Stored XSS.This issue affects Ads by datafeedr.Com: from n/a through 1.2.0...

WordPress Ads by datafeedr.com Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Ads by datafeedr.com Type Plugin Vulnerable versions = 1.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49169 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f1f49a74489f Credits Ngô Thiên An ancorn from VNPT-VCI...

CVE-2023-5843

The Ads by datafeedr.com plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 1.1.3 via the 'dfadsajaxloadads' function. This allows unauthenticated attackers to execute code on the server. The parameters of the callable function are limited, they cannot b...

WordPress Plugin Ads by datafeedr.com Code Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Ads by datafeedr.c...

WordPress Ads by datafeedr.com Plugin <= 1.1.3 is vulnerable to Remote Code Execution (RCE)

Software Ads by datafeedr.com Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.2.0 OWASP Top 10 A1: Injection Classification Remote Code Execution RCE CVE CVE-2023-5843 Patch priority Medium CVSS severity Medium 9 Developer Claim ownership PSID 4d60ddac47c0 Credits István Márton Required...