92 matches found
CVE-2026-9676
The F4 Post Tree WordPress plugin before 2.0.5 does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authenticated users with Subscriber-level access and above to modify the parent and menu order of arbitrary posts...
CVE-2026-9676
The vulnerability CVE-2026-9676 affects the F4 Post Tree WordPress plugin prior to 2.0.5. The issue arises because the plugin does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authenticated users with Subscriber-level access and above to modify the...
CVE-2026-9676 f4 Post Tree < 2.0.5 - Subscriber+ Arbitrary Post Parent/Menu Order Modification
The F4 Post Tree WordPress plugin before 2.0.5 does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authenticated users with Subscriber-level access and above to modify the parent and menu order of arbitrary posts...
EUVD-2026-40040
The F4 Post Tree WordPress plugin before 2.0.5 does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authenticated users with Subscriber-level access and above to modify the parent and menu order of arbitrary posts...
CVE-2026-9676
The F4 Post Tree WordPress plugin before 2.0.5 does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authenticated users with Subscriber-level access and above to modify the parent and menu order of arbitrary posts...
EUVD-2024-50310
Malicious code in bioql PyPI...
EUVD-2023-56447
Malicious code in bioql PyPI...
EUVD-2024-29783
Malicious code in bioql PyPI...
EUVD-2021-32560
Malicious code in bioql PyPI...
EUVD-2025-2781
Malicious code in bioql PyPI...
EUVD-2021-32554
Malicious code in bioql PyPI...
CVE-2025-58617
Missing Authorization vulnerability in FAKTOR VIER F4 Media Taxonomies f4-media-taxonomies allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects F4 Media Taxonomies: from n/a through = 1.1.4...
CVE-2025-58617
Missing Authorization vulnerability in FAKTOR VIER F4 Media Taxonomies f4-media-taxonomies allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects F4 Media Taxonomies: from n/a through = 1.1.4...
WordPress F4 Media Taxonomies Plugin <= 1.1.4 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Nabil Irawan in WordPress Plugin F4 Media Taxonomies versions = 1.1.4...
CVE-2025-58617
CVE-2025-58617 concerns the WordPress plugin F4 Media Taxonomies (
CVE-2025-58617 WordPress F4 Media Taxonomies Plugin <= 1.1.4 - Broken Access Control Vulnerability
Missing Authorization vulnerability in FAKTOR VIER F4 Media Taxonomies f4-media-taxonomies allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects F4 Media Taxonomies: from n/a through = 1.1.4...
CVE-2025-58617 WordPress F4 Media Taxonomies Plugin <= 1.1.4 - Broken Access Control Vulnerability
Missing Authorization vulnerability in FAKTOR VIER F4 Media Taxonomies f4-media-taxonomies allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects F4 Media Taxonomies: from n/a through = 1.1.4...
WordPress plugin F4 Media Taxonomies 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Malicious code in @zalastax/nolb-f4 (npm)
The package @zalastax/nolb-f4 was found to contain malicious code...
MAL-2025-11419 Malicious code in @zalastax/nolb-f4 (npm)
The package @zalastax/nolb-f4 was found to contain malicious code...