53 matches found
EUVD-2011-1063
Malware in sbrugna...
EUVD-2025-28504
Malicious code in bioql PyPI...
EUVD-2025-19368
Malicious code in bioql PyPI...
CVE-2025-53306
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in lucidcrew WP Forum Server forum-server allows SQL Injection.This issue affects WP Forum Server: from n/a through = 1.8.2...
CVE-2025-53305
Cross-Site Request Forgery CSRF vulnerability in lucidcrew WP Forum Server forum-server allows Stored XSS.This issue affects WP Forum Server: from n/a through = 1.8.2...
CVE-2025-53305
Cross-Site Request Forgery CSRF vulnerability in lucidcrew WP Forum Server forum-server allows Stored XSS.This issue affects WP Forum Server: from n/a through = 1.8.2...
CVE-2025-53306
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in lucidcrew WP Forum Server forum-server allows SQL Injection.This issue affects WP Forum Server: from n/a through = 1.8.2...
CVE-2025-53306 WordPress WP Forum Server plugin <= 1.8.2 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in lucidcrew WP Forum Server allows SQL Injection. This issue affects WP Forum Server: from n/a through 1.8.2...
CVE-2025-53306 WordPress WP Forum Server plugin <= 1.8.2 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in lucidcrew WP Forum Server forum-server allows SQL Injection.This issue affects WP Forum Server: from n/a through = 1.8.2...
CVE-2025-53305 WordPress WP Forum Server plugin <= 1.8.2 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in lucidcrew WP Forum Server forum-server allows Stored XSS.This issue affects WP Forum Server: from n/a through = 1.8.2...
CVE-2025-53305
CVE-2025-53305 is a CSRF vulnerability in the WordPress plugin WP Forum Server (lucidcrew WP Forum Server). The issue permits Stored XSS and affects versions 1.8.2 and earlier. The CVSS v3.1 base score is 7.1 (HIGH); exploitability not explicitly confirmed in provided docs. A patch exists in newe...
CVE-2025-53305 WordPress WP Forum Server plugin <= 1.8.2 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in lucidcrew WP Forum Server forum-server allows Stored XSS.This issue affects WP Forum Server: from n/a through = 1.8.2...
WordPress plugin WP Forum Server 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...
PT-2025-27204 · Lucidcrew · Lucidcrew Wp Forum Server
Name of the Vulnerable Software and Affected Versions: lucidcrew WP Forum Server versions 1.8.2 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on the web...
PT-2025-27205 · Lucidcrew · Lucidcrew Wp Forum Server
Name of the Vulnerable Software and Affected Versions: lucidcrew WP Forum Server versions 1.8.2 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...
WordPress plugin WP Forum Server SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...
CVE-2017-20106 Lithium Forum Compose Message server-side request forgery
A vulnerability, which was classified as critical, has been found in Lithium Forum 2017 Q1. This issue affects some unknown processing of the component Compose Message Handler. The manipulation of the argument uploadurl leads to server-side request forgery. The attack needs to be approached...
WP Forum Server <= 1.7.3 - fs-admin/fs-admin.php Multiple Parameter XSS
The WP Forum Server WordPress plugin was affected by a fs-admin/fs-admin.php Multiple Parameter XSS security vulnerability...
WP Forum Server 1.6.5 - feed.php topic Parameter SQL Injection
The WP Forum Server WordPress plugin was affected by a feed.php topic Parameter SQL Injection security vulnerability...
WP Forum Server 1.6.5 - index.php Multiple Parameter SQL Injection
The WP Forum Server WordPress plugin was affected by an index.php Multiple Parameter SQL Injection security vulnerability...