EUVD-2025-30520

Malicious code in bioql PyPI...

CVE-2025-58669

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Modern Minds Magento 2 WordPress Integration m2wp allows Stored XSS.This issue affects Magento 2 WordPress Integration: from n/a through = 1.4.2.1...

CVE-2025-58669

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Modern Minds Magento 2 WordPress Integration m2wp allows Stored XSS.This issue affects Magento 2 WordPress Integration: from n/a through = 1.4.2.1...

CVE-2025-58669

CVE-2025-58669 affects Magento 2 WordPress Integration (WordPress plugin) up to version 1.4.1. The issue is a Stored Cross-Site Scripting (XSS) caused by improper input neutralization during web page generation. It is publicly documented as Magento 2 WordPress Integration; vulnerability type is S...

CVE-2025-58669 WordPress Magento 2 WordPress Integration plugin <= 1.4.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Modern Minds Magento 2 WordPress Integration m2wp allows Stored XSS.This issue affects Magento 2 WordPress Integration: from n/a through = 1.4.2.1...

PT-2025-38958

Name of the Vulnerable Software and Affected Versions Modern Minds Magento 2 WordPress Integration versions through 1.4.1 Description The Modern Minds Magento 2 WordPress Integration software contains a flaw related to improper input handling during web page generation, specifically a Stored...

Over 280,000 WordPress Sites Attacked Using WPGateway Plugin Zero-Day Vulnerability

A zero-day flaw in the latest version of a WordPress premium plugin known as WPGateway is being actively exploited in the wild, potentially allowing malicious actors to completely take over affected sites. Tracked as CVE-2022-3180 CVSS score: 9.8, the issue is being weaponized to add a malicious...