CVE-2025-23533 WordPress WP Lyrics plugin <= 0.4.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Adrian Moreno WP Lyrics allows Stored XSS.This issue affects WP Lyrics: from n/a through 0.4.1...

WordPress WP Lyrics plugin <= 0.4.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin WP Lyrics versions = 0.4.1...

CVE-2008-4906

SQL injection vulnerability in lyricssong.php in the Lyrics lyricsmenu plugin 0.42 for e107 allows remote attackers to execute arbitrary SQL commands via the lid parameter. NOTE: some of these details are obtained from third party information...

CVE-2008-4906

SQL injection vulnerability in lyricssong.php in the Lyrics lyricsmenu plugin 0.42 for e107 allows remote attackers to execute arbitrary SQL commands via the lid parameter. NOTE: some of these details are obtained from third party information...

CVE-2008-4906

CVE-2008-4906 describes an SQL injection in the Lyrics (lyrics_menu) plugin for e107, version 0.42, where the l_id parameter enables remote attackers to execute arbitrary SQL commands. This is a high-severity issue (CVSS v2 base score 7.5). The provided documents confirm the vulnerable component ...