37 matches found
CVE-2025-62992
Cross-Site Request Forgery CSRF vulnerability in Everest themes Everest Backup allows Path Traversal.This issue affects Everest Backup: from n/a through 2.3.9...
PT-2025-54303
Name of the Vulnerable Software and Affected Versions Everest Backup versions through 2.3.9 Description A Cross-Site Request Forgery CSRF issue exists in Everest Backup, potentially allowing Path Traversal. Recommendations Versions prior to 2.3.9 are affected. At the moment, there is no informati...
EUVD-2023-31196
Malicious code in bioql PyPI...
EUVD-2023-31197
Malicious code in bioql PyPI...
EUVD-2023-45752
Malicious code in bioql PyPI...
EUVD-2023-45754
Malicious code in bioql PyPI...
EUVD-2023-31188
Malicious code in bioql PyPI...
EUVD-2024-30333
Malicious code in bioql PyPI...
EUVD-2023-31195
Malicious code in bioql PyPI...
CVE-2023-41235
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Everest News Pro theme = 1.1.7 versions...
CVE-2023-41237
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...
CVE-2023-27412
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest themes Mocho Blog theme = 1.0.4 versions...
CVE-2023-27419
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest themes Viable Blog theme = 1.1.4 versions...
CVE-2023-27420
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose theme = 1.0.5 versions...
CVE-2025-39360
CVE-2025-39360 refers to a Local File Inclusion in the Grace Mag WordPress theme (versions 1.1.5 and earlier). The issue stems from improper control of filenames in PHP include/require logic, i.e., a PHP Remote File Inclusion that permits local file inclusion. Affected product: Grace Mag theme up...
CVE-2024-32531
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Everest themes GuCherry Blog allows Reflected XSS.This issue affects GuCherry Blog: from n/a through 1.1.8...
CVE-2024-32531
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Everest themes GuCherry Blog allows Reflected XSS.This issue affects GuCherry Blog: from n/a through 1.1.8...
CVE-2024-32531
CVE-2024-32531 affects the GuCherry Blog WordPress theme (GuCherry Blog) with a Reflected XSS vulnerability in web page generation. The issue affects GuCherry Blog versions from n/a up to and including 1.1.8. The connected Wordfence entry explicitly notes Reflected XSS with Unpatched status; no r...
CVE-2023-41237
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...
CVE-2023-41237
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...