CVE-2023-49153

Cross-Site Request Forgery CSRF vulnerability in Saiful Islam Add to Cart Text Changer and Customize Button, Add Custom Icon.This issue affects Add to Cart Text Changer and Customize Button, Add Custom Icon: from n/a through 2.0...

EUVD-2024-45569

Malicious code in bioql PyPI...

EUVD-2025-13753

Malicious code in bioql PyPI...

EUVD-2025-30660

Malicious code in bioql PyPI...

EUVD-2025-3329

Malicious code in bioql PyPI...

EUVD-2025-30541

Malicious code in bioql PyPI...

EUVD-2025-13854

Malicious code in bioql PyPI...

EUVD-2024-32786

Malicious code in bioql PyPI...

CVE-2025-57994

Authorization Bypass Through User-Controlled Key vulnerability in Sayful Islam Upcoming Events Lists upcoming-events-lists allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Upcoming Events Lists: from n/a through = 1.4.0...

CVE-2025-58267

Cross-Site Request Forgery CSRF vulnerability in Aftabul Islam Stock Message stock-message allows Stored XSS.This issue affects Stock Message: from n/a through = 1.1.0...

CVE-2025-57994

Authorization Bypass Through User-Controlled Key vulnerability in Sayful Islam Upcoming Events Lists upcoming-events-lists allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Upcoming Events Lists: from n/a through = 1.4.0...

PT-2025-38844

Name of the Vulnerable Software and Affected Versions Sayful Islam Upcoming Events Lists versions through 1.4.0 Description An authorization bypass exists due to user-controlled keys and incorrectly configured access control security levels in Upcoming Events Lists. This allows for bypassing...

PT-2025-38929

Name of the Vulnerable Software and Affected Versions Aftabul Islam Stock Message versions through 1.1.0 Description A Cross-Site Request Forgery CSRF issue exists in Aftabul Islam Stock Message, which also allows Stored Cross-Site Scripting XSS. The issue allows for potential malicious actions t...

CVE-2024-45270

WordPress plugin "Carousel Slider" provided by Sayful Islam contains a cross-site request forgery vulnerability on Hero image selection feature. While logged in to the WordPress site with Carousel Slider plugin enabled, accessing a crafted page may cause a user to alter the contents of the...

CVE-2025-48131 WordPress UltraAddons Elementor Lite plugin <= 2.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saiful Islam UltraAddons Elementor Lite ultraaddons-elementor-lite allows Stored XSS.This issue affects UltraAddons Elementor Lite: from n/a through = 2.0.2...

CVE-2025-47632

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Raihanul Islam Awesome Gallery awesome-gallery allows Stored XSS.This issue affects Awesome Gallery: from n/a through = 1.0...

CVE-2025-47632

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Raihanul Islam Awesome Gallery allows Stored XSS. This issue affects Awesome Gallery: from n/a through 1.0...

CVE-2025-47462

Cross-Site Request Forgery CSRF vulnerability in WebAppick Challan webappick-pdf-invoice-for-woocommerce allows Privilege Escalation.This issue affects Challan: from n/a through = 3.7.58...

CVE-2025-47632 WordPress Awesome Gallery plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Raihanul Islam Awesome Gallery awesome-gallery allows Stored XSS.This issue affects Awesome Gallery: from n/a through = 1.0...

CVE-2025-47632 WordPress Awesome Gallery plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Raihanul Islam Awesome Gallery awesome-gallery allows Stored XSS.This issue affects Awesome Gallery: from n/a through = 1.0...