15 matches found
EUVD-2014-3135
Malware in sbrugna...
CVE-2025-24749
Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...
CVE-2025-24749
Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...
CVE-2025-24749
CVE-2025-24749 affects the WordPress plugin EZPZ SAML SP Single Sign On (SSO) for versions 1.2.5 and earlier. The provided documents describe a CSRF vulnerability in this plugin, with PatchStack and CVE listings also noting a CSRF to Stored XSS vector. Root cause details are not explicitly enumer...
CVE-2025-24749 WordPress EZPZ SAML SP Single Sign On (SSO) plugin <= 1.2.5 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...
CVE-2025-24749 WordPress EZPZ SAML SP Single Sign On (SSO) plugin <= 1.2.5 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Overt Software Solutions LTD EZPZ SAML SP Single Sign On SSO allows Cross Site Request Forgery. This issue affects EZPZ SAML SP Single Sign On SSO: from n/a through 1.2.5...
WordPress EZPZ SAML SP Single Sign On (SSO) plugin <= 1.2.5 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin EZPZ SAML SP Single Sign On SSO versions = 1.2.5...
CVE-2014-3114
The EZPZ One Click Backup ezpz-one-click-backup plugin 12.03.10 and earlier for WordPress allows remote attackers to execute arbitrary commands via the cmd parameter to functions/ezpz-archive-cmd.php...
CVE-2014-3114
The EZPZ One Click Backup ezpz-one-click-backup plugin 12.03.10 and earlier for WordPress allows remote attackers to execute arbitrary commands via the cmd parameter to functions/ezpz-archive-cmd.php...
CVE-2014-3114
The CVE-2014-3114 entry concerns the EZPZ One Click Backup WordPress plugin (versions 12.03.10 and earlier). Affects the PHP script ezpz-archive-cmd.php, where the cmd parameter can be exploited to execute arbitrary commands, resulting in unauthenticated remote command execution. Multiple sources...
WordPress EZPZ One Click Backup Plugin <= 12.03.10 - XSS
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...
EZPZ One Click Backup <= 12.03.10 - Cross-Site Scripting (XSS)
The ezpz-one-click-backup WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...
EZPZ One Click Backup <= 12.03.10 - Unauthenticated Command Execution
The ezpz-one-click-backup WordPress plugin was affected by an Unauthenticated Command Execution security vulnerability...
WordPress Plugin 'ezpz-one-click-backup' 'cmd' Parameter OS Code Execution Vulnerability
The ezpz-one-click-backup plugin for WordPress is prone to a remote code execution RCE vulnerability because it fails to properly validate user supplied input. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
WordPress EZPZ One Click Backup 12.03.10 Cross Site Scripting
Hi We have used our tool, THAPS, to identify vulnerabilities in this WordPress plugin. We have confirmed at least one of the reported vulnerabilities and created a working exploit located below. Attached is one or more log files containing the output of our tool, identifying the location of the...