EUVD-2025-10260

Malicious code in bioql PyPI...

EUVD-2025-6647

Malicious code in bioql PyPI...

CVE-2025-32164

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in maennchen1.de m1.DownloadList m1downloadlist allows Retrieve Embedded Sensitive Data.This issue affects m1.DownloadList: from n/a through = 0.24...

CVE-2025-32164

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in maennchen1.de m1.DownloadList m1downloadlist allows Retrieve Embedded Sensitive Data.This issue affects m1.DownloadList: from n/a through = 0.24...

CVE-2025-32164

CVE-2025-32164 affects the m1.DownloadList WordPress plugin (versions from n/a up to 0.21). Root cause: Exposure of Sensitive Information to an Unauthorized Control Sphere, leading to unauthorized access to system data. Impact as stated: Confidentiality impact HIGH; no information on integrity or...

WordPress plugin m1.DownloadList 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2025-15598 · Unknown · M1.Downloadlist

Name of the Vulnerable Software and Affected Versions: m1.DownloadList versions 0.0 through 0.21 Description: The issue is related to the exposure of sensitive system information to an unauthorized control sphere. This is a problem where sensitive information is made available to unauthorized...

CVE-2025-26895

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in maennchen1.de m1.DownloadList m1downloadlist allows DOM-Based XSS.This issue affects m1.DownloadList: from n/a through = 0.19...

CVE-2025-26895

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in maennchen1.de m1.DownloadList m1downloadlist allows DOM-Based XSS.This issue affects m1.DownloadList: from n/a through = 0.19...

CVE-2025-26895

CVE-2025-26895 affects the WordPress plugin m1.DownloadList (versions up to and including 0.19). The vulnerability is a DOM-based XSS flaw introduced during web page generation, enabling injected scripts when a page is rendered. The CVE records indicate an affected plugin and a fixed/Patched stat...

CVE-2025-26895 WordPress m1.DownloadList plugin <= 0.19 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in maennchen1.de m1.DownloadList m1downloadlist allows DOM-Based XSS.This issue affects m1.DownloadList: from n/a through = 0.19...

CVE-2025-26895 WordPress m1.DownloadList plugin <= 0.19 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in maennchen1.de m1.DownloadList m1downloadlist allows DOM-Based XSS.This issue affects m1.DownloadList: from n/a through = 0.19...

WordPress plugin m1.DownloadList 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

WordPress m1.DownloadList plugin <= 0.19 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by muhammad yudha Patchstack Alliance in WordPress Plugin m1.DownloadList versions = 0.19...

PT-2024-34283 · Unknown · Ds.Downloadlist

Name of the Vulnerable Software and Affected Versions: DS.DownloadList versions 1.3 and earlier Description: The issue is related to Deserialization of Untrusted Data, which allows Object Injection. This can potentially lead to security breaches by injecting malicious objects into the system...