EUVD-2021-11845

Malware in sbrugna...

EUVD-2015-1110

Malware in sbrugna...

CVE-2015-10100

A vulnerability, which was classified as critical, has been found in Dynamic Widgets Plugin up to 1.5.10 on WordPress. This issue affects some unknown processing of the file classes/dynwidclass.php. The manipulation leads to sql injection. The attack may be initiated remotely. Upgrading to versio...

Sql injection

A vulnerability, which was classified as critical, has been found in Dynamic Widgets Plugin up to 1.5.10 on WordPress. This issue affects some unknown processing of the file classes/dynwidclass.php. The manipulation leads to sql injection. The attack may be initiated remotely. Upgrading to versio...

CVE-2015-10100

CVE-2015-10100 affects Dynamic Widgets Plugin for WordPress (versions up to 1.5.10). The vulnerability stems from SQL injection in the file classes/dynwid_class.php (or dynwid_class.php in related docs), enabling remote exploitation with no user interaction. Upgrading to version 1.5.11 addresses ...

PT-2023-10279 · WordPress · Dynamic Widgets Plugin

Name of the Vulnerable Software and Affected Versions: Dynamic Widgets Plugin versions 1.5.10 and earlier Description: A critical issue has been found in the Dynamic Widgets Plugin, affecting some unknown processing of the file classes/dynwid class.php. The manipulation leads to sql injection. Th...

CVE-2015-9437

The CVE refers to the WordPress Dynamic Widgets plugin, affected versions prior to 1.5.11. The issue is a CSRF that can lead to a stored/XSS outcome via the wp-admin/themes.php?page=dynwid-config page_limit parameter. Several connected sources confirm that this vulnerability concerns Dynamic Widg...