WordPress Pinterest Automatic Pin plugin <= 4.19.0 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Anhchangmutrang in WordPress Plugin Pinterest Automatic Pin versions = 4.19.0...

WordPress AT Internet SmartTag plugin <= 0.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin AT Internet SmartTag versions = 0.2...

PT-2025-7726 · Unknown · Erima Zarinpal Donate

Name of the Vulnerable Software and Affected Versions: Erima Zarinpal Donate versions 1.0 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability, which allows for Cross Site Request Forgery. Recommendations: For Erima Zarinpal Donate versions 1.0 and...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow when the ReadHuffmanCodes function is used. An attacker can craft a special WebP lossless file that triggers the ReadHuffmanCodes function to allocate the HuffmanCode buffer with a size that comes from an arra...