EUVD-2025-31272

Malicious code in bioql PyPI...

EUVD-2024-45477

Malicious code in bioql PyPI...

CVE-2025-60128

Missing Authorization vulnerability in WP Delicious Delisho dr-widgets-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Delisho: from n/a through = 1.1.3...

WordPress Delisho Plugin <= 1.1.3 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Denver Jackson in WordPress Plugin Delisho versions = 1.1.3...

CVE-2025-60128

Missing Authorization vulnerability in WP Delicious Delisho dr-widgets-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Delisho: from n/a through = 1.1.3...

CVE-2025-60128 WordPress Delisho Plugin <= 1.1.3 - Broken Access Control Vulnerability

Missing Authorization vulnerability in WP Delicious Delisho dr-widgets-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Delisho: from n/a through = 1.1.3...

CVE-2025-60128

CVE-2025-60128 affects the Delisho WordPress plugin (Delisho – Recipe Widgets and Blocks) up to version 1.1.3. The issue is Missing Authorization allowing unauthorized updates to Options via wcmlim_settings_ajax_handler, as documented in the CVE entry and corroborated by the Wordfence vulnerabili...

CVE-2025-60128 WordPress Delisho Plugin <= 1.1.3 - Broken Access Control Vulnerability

Missing Authorization vulnerability in WP Delicious Delisho dr-widgets-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Delisho: from n/a through = 1.1.3...

PT-2025-39575

Name of the Vulnerable Software and Affected Versions WP Delicious Delisho versions through 1.1.3 Description An authorization issue exists in WP Delicious Delisho, allowing exploitation of incorrectly configured access control security levels. Recommendations Update WP Delicious Delisho to a...

WordPress plugin Delisho 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

CVE-2024-51676

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Delicious Delisho dr-widgets-blocks allows DOM-Based XSS.This issue affects Delisho: from n/a through = 1.0.6...

CVE-2024-51676

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Delicious Delisho dr-widgets-blocks allows DOM-Based XSS.This issue affects Delisho: from n/a through = 1.0.6...

CVE-2024-51676 WordPress Delisho plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Delicious Delisho dr-widgets-blocks allows DOM-Based XSS.This issue affects Delisho: from n/a through = 1.0.6...

CVE-2024-51676 WordPress Delisho plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Delicious Delisho dr-widgets-blocks allows DOM-Based XSS.This issue affects Delisho: from n/a through = 1.0.6...

CVE-2024-51676

CVE-2024-51676 is a Cross-Site Scripting (DOM-based XSS) vulnerability in the WordPress plugin Delisho (dr-widgets-blocks). It affects Delisho versions up to and including 1.0.6 and arises from improper input neutralization during web page generation. The issue has a CVSS v3.1 base score of 6.5 (...

WordPress plugin Delisho 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

WordPress Delisho plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Khalid Yusuf Patchstack Alliance in WordPress Plugin Delisho versions = 1.0.6...

WordPress Delisho Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Delisho Type Plugin Vulnerable versions = 1.0.6 Fixed in 1.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51676 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a3f33d2b4958 Credits Khalid Yusuf Required privilege Contributor...