62 matches found
CVE-2025-14124
creationtimestamp| type| source ---|---|--- 2026-01-05 08:34:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbnzqrsg6k2e 2026-01-05 17:18:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbowz6pepa2u 2026-01-09 23:00:14+00:00| published-proof-of-concept|...
CVE-2025-12173
The WP Admin Microblog plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.1. This is due to missing or incorrect nonce validation on the 'wp-admin-microblog' page. This makes it possible for unauthenticated attackers to send messages on beha...
CVE-2025-12173
The WP Admin Microblog plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.1. This is due to missing or incorrect nonce validation on the 'wp-admin-microblog' page. This makes it possible for unauthenticated attackers to send messages on beha...
CVE-2025-12173
CVE-2025-12173 concerns the WordPress plugin WP Admin Microblog (versions ≤ 3.1.1). Wordfence details indicate a Cross-Site Request Forgery (CSRF) due to missing or incorrect nonce validation on the wp-admin-microblog page, enabling unauthenticated attackers to post messages on behalf of an admin...
EUVD-2025-197940
The WP Admin Microblog plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.1. This is due to missing or incorrect nonce validation on the 'wp-admin-microblog' page. This makes it possible for unauthenticated attackers to send messages on beha...
CVE-2025-12173 WP Admin Microblog <= 3.1.1 - Cross-Site Request Forgery to Message Creation
The WP Admin Microblog plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.1. This is due to missing or incorrect nonce validation on the 'wp-admin-microblog' page. This makes it possible for unauthenticated attackers to send messages on beha...
CVE-2025-12173 WP Admin Microblog <= 3.1.1 - Cross-Site Request Forgery to Message Creation
The WP Admin Microblog plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.1. This is due to missing or incorrect nonce validation on the 'wp-admin-microblog' page. This makes it possible for unauthenticated attackers to send messages on beha...
WordPress plugin WP Admin Microblog 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...
PT-2025-47254
Name of the Vulnerable Software and Affected Versions WP Admin Microblog plugin for WordPress versions prior to 3.1.2 Description The WP Admin Microblog plugin for WordPress is susceptible to Cross-Site Request Forgery CSRF. This is caused by a lack of, or incorrect, nonce validation on the...
WordPress WP Admin Microblog plugin <= 3.1.1 - Cross-Site Request Forgery to Message Creation vulnerability
Cross-Site Request Forgery to Message Creation vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin WP Admin Microblog versions = 3.1.1...
EUVD-2006-0242
Malware in sbrugna...
EUVD-2006-0241
Malware in sbrugna...
EUVD-2015-9289
Malware in sbrugna...
EUVD-2011-3713
Malware in sbrugna...
EUVD-2025-8612
Malicious code in bioql PyPI...
CVE-2015-9449
The microblog-poster plugin before 1.6.2 for WordPress has SQL Injection via the wp-admin/options-general.php?page=microblogposter.php accountid parameter...
CVE-2011-3756
MicroBlog 0.9.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by init.php and certain other files...
CVE-2025-31435
Cross-Site Request Forgery CSRF vulnerability in Efficient Scripts Microblog Poster microblog-poster allows Stored XSS.This issue affects Microblog Poster: from n/a through = 2.1.6...
WordPress Microblog Poster plugin <= 2.1.6 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability
Cross Site Request Forgery CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Microblog Poster versions = 2.1.6...
CVE-2025-31435
Cross-Site Request Forgery CSRF vulnerability in Efficient Scripts Microblog Poster microblog-poster allows Stored XSS.This issue affects Microblog Poster: from n/a through = 2.1.6...