113 matches found
CVE-2026-22450
Missing Authorization vulnerability in Select-Themes Don Peppe donpeppe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Don Peppe: from n/a through = 1.3...
CVE-2026-22450
Missing Authorization vulnerability in Select-Themes Don Peppe donpeppe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Don Peppe: from n/a through = 1.3...
CVE-2026-22450
Missing Authorization vulnerability in Select-Themes Don Peppe donpeppe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Don Peppe: from n/a through = 1.3...
CVE-2026-22450 WordPress Don Peppe theme <= 1.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Select-Themes Don Peppe donpeppe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Don Peppe: from n/a through = 1.3...
CVE-2026-22450 WordPress Don Peppe theme <= 1.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Select-Themes Don Peppe donpeppe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Don Peppe: from n/a through = 1.3...
CVE-2026-22450
CVE-2026-22450 is documented as a Missing Authorization / broken access control vulnerability in the WordPress theme Don Peppe (Select-Themes) Don Peppe, affected up to version 1.3. Public records from NVD, Red Hat, CIRCL, EUVD/ENISA, and CVE lists confirm the vulnerability description and affect...
PT-2026-4231
Missing Authorization vulnerability in Select-Themes Don Peppe donpeppe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Don Peppe: from n/a through = 1.3...
WordPress plugin Don Peppe security vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. The WordPre...
CVE-2025-23673
Cross-Site Request Forgery CSRF vulnerability in dkukral Email on Publish email-on-publish allows Stored XSS.This issue affects Email on Publish: from n/a through = 1.5...
WordPress Don Peppe theme <= 1.3 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Don Peppe versions = 1.3...
CVE-2025-60071
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in don-themes Riode riode allows PHP Local File Inclusion.This issue affects Riode: from n/a through = 1.6.23...
CVE-2025-60071
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in don-themes Riode riode allows PHP Local File Inclusion.This issue affects Riode: from n/a through = 1.6.23...
Malicious code in mitok-don-olila (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ada56ddd17ee180057940187ed6c716e7754ab7100f4893a658803556b1f1c8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mitok-don-olia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0a3675b69a680425c03ae8b025d42c23d87ceba2f9956dadb332a26b56adcbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mitok-don-olialobna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2f3e15f446cfae9859dbc6ffaf9f12e9670e46363a1eb87bb7ba49ed195232c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mitok-don-olialobsina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ebd5d145b696dadf2cc3c8754e55d90edbefdc7a34c35514e4bc5c7978c960f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mitailok-don-olia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b49d2d4ec53d95b26d764997a3dfb84b07b5153d85411761052d60cb0572281 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mitalik-don-olikaisima (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fffb32881e3931e30af06b89e51baf70cfcfaea935f228f8a235f888c2cf4405 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-3332
Malicious code in bioql PyPI...
EUVD-2022-48274
Malicious code in bioql PyPI...