37 matches found
EUVD-2025-13778
Malicious code in bioql PyPI...
CVE-2025-47594
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
CVE-2025-47594
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
CVE-2025-47594
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
WordPress Soccer Live Scores plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by ch4r0n in WordPress Plugin Soccer Live Scores versions = 1.0.5...
CVE-2025-47594 WordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
CVE-2025-47594 WordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
CVE-2025-47594
The CVE CVE-2025-47594 describes a Cross-Site Request Forgery (CSRF) vulnerability in the Soccer Live Scores WordPress plugin (DAEXT Soccer Live Scores), affecting versions up to 1.0.5. The initial description and connected sources confirm the issue is CSRF, but do not provide concrete exploit de...
PT-2025-20171 · Unknown · Daext Soccer Live Scores
Name of the Vulnerable Software and Affected Versions: DAEXT Soccer Live Scores versions 1.0.0 through 1.0.5 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This is a type of attack where an...
WordPress plugin Soccer Live Scores 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...
WordPress Live Scores for SportsPress Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)
Software Live Scores for SportsPress Type Plugin Vulnerable versions = 1.9.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1a8a87c6e703 Credits Rafie Muhammad...
WordPress Live Scores for SportsPress plugin <= 1.9.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Live Scores for SportsPress plugin versions = 1.9.1. Solution Update the WordPress Live Scores for SportsPress plugin to the latest available version at least 1.9.2...
WordPress Live Scores for SportsPress plugin <= 1.9.1 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Live Scores for SportsPress plugin versions = 1.9.1. Solution Update the WordPress Live Scores for SportsPress plugin to the latest available version at least 1.9.2...
Live Scores for SportsPress < 1.9.1 - Reflected Cross-Site Scripting
The plugin does not sanitise the lsfsmatchdate parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue https://example.com/wp-admin/edit.php?posttype=spevent&page=lsfs-live-matches&lsfsmatchdate="alert/XSS/...
Denial of Service Vulnerability in Razor Sports App
ThunderSpeed Sports APP client provides accurate tournament information, live scores, live animation, tournament data analysis, tournament information and other services for soccer, basketball, tennis and e-sports enthusiasts. There is a denial-of-service vulnerability in RazorSports APP, which c...
SofaScore Live Scores - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application SofaScore Live Scores published at the 'play' market has multiple vulnerabilities...
Football Live Scores - Dynamic Code Loading, External URLs, Unsafe deleting vulnerabilities
HackApp vulnerability scanner discovered that application Football Live Scores published at the 'play' market has multiple vulnerabilities...
Tennis Temple - Live Scores - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Tennis Temple - Live Scores published at the 'play' market has multiple vulnerabilities...
Football Live Scores - Customized SSL, Redefined SSL Common Names verifier, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Football Live Scores published at the 'play' market has multiple vulnerabilities...
Football Live Scores - Corrupted files, Dynamic Code Loading, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application Football Live Scores published at the 'play' market has multiple vulnerabilities...