EUVD-2023-49672

Malicious code in bioql PyPI...

PT-2025-14191 · Unknown · Labinator Content Types Duplicator

Name of the Vulnerable Software and Affected Versions: Labinator Content Types Duplicator versions 1.1.3 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized actions to be performed. Recommendations: For versions 1.1.3 and earlier, update to...

CVE-2024-12472 Post Duplicator <= 2.36 - Authenticated (Contributor+) Protected Post Disclosure

The Post Duplicator plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.36 via the mtphrduplicatepost function due to insufficient restrictions on which posts can be duplicated. This makes it possible for authenticated attackers, with Contributor-lev...

CVE-2023-49835

Missing Authorization vulnerability in Metaphor Creations Post Duplicator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Duplicator: from n/a through 2.31...

Wordpress Plugin Duplicator Arbitrary File Read Vulnerability

WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. An arbitrary file read vulnerability exists in the Wordpress plugin Duplicator. An attacker...