CVE-2025-6239

Zohocorp ManageEngine Applications Manager versions 176800 and below are vulnerable to information disclosure in File/Directory monitor...

CVE-2025-6239

The CVE-2025-6239 issue affects Zohocorp ManageEngine Applications Manager (versions 176800 and below). The root cause is information disclosure due to improper file/directory monitoring in the File/Directory monitor component. Attackers could access sensitive information exposed by this monitori...

EUVD-2025-19863

Malicious code in bioql PyPI...

CVE-2025-27930

Zohocorp ManageEngine Applications Manager versions 176600 and prior are vulnerable to stored cross-site scripting in the File/Directory monitor...

CVE-2025-3702

Missing Authorization vulnerability in Melapress Melapress File Monitor website-file-changes-monitor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Melapress File Monitor: from n/a through 2.2.0...

CVE-2025-3702

Missing Authorization vulnerability in Melapress Melapress File Monitor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Melapress File Monitor: from n/a before 2.2.0...

CVE-2025-3702

Missing Authorization vulnerability in Melapress Melapress File Monitor website-file-changes-monitor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Melapress File Monitor: from n/a through 2.2.0...

CVE-2025-3702 WordPress Melapress File Monitor plugin < 2.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Melapress Melapress File Monitor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Melapress File Monitor: from n/a before 2.2.0...

CVE-2025-3702

CVE-2025-3702 describes a Missing Authorization (broken access control) vulnerability in the WordPress Melapress File Monitor plugin, affecting versions prior to 2.2.0. Multiple sources consolidate the same issue. The root cause is improperly configured access control levels that can be exploited...

WordPress plugin Melapress File Monitor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

PT-2025-27794 · Unknown · Melapress File Monitor

Name of the Vulnerable Software and Affected Versions: Melapress File Monitor version prior to 2.2.0 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions prior to...

WordPress Website File Changes plugin < 2.1.1 - Authenticated SQL Injection vulnerability

Authenticated SQL Injection vulnerability discovered by y4ng0615 in WordPress Plugin Melapress File Monitor versions 2.1.1...

CVE-2024-9879

The Melapress File Monitor WordPress plugin before 2.1.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

CVE-2024-9879

The Melapress File Monitor WordPress plugin before 2.1.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

CVE-2024-10009

The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

CVE-2024-10009

The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

CVE-2024-9879

The WordPress plugin Melapress File Monitor (vulnerable: prior to 2.1.1) exposes an SQL injection vulnerability caused by an unsanitized parameter used in a SQL statement. Affected product matches: Melapress File Monitor WordPress plugin before 2.1.1. Underlying cause is lack of input sanitizatio...

CVE-2024-9879 Website File Changes < 2.1.1 - Authenticated SQL Injection

The Melapress File Monitor WordPress plugin before 2.1.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

CVE-2024-10009 Website File Changes < 2.1.0 - Admin+ Authenticated SQL Injection

The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

CVE-2024-10009

The CVE-2024-10009 entry relates to the Melapress File Monitor WordPress plugin prior to version 2.1.0. The root cause is insufficient sanitization and escaping of a parameter used in an SQL statement, enabling an SQL injection attack by admins. Reported details across multiple sources confirm th...