212 matches found
CVE-2026-33559
WordPress Plugin "OpenStreetMap" provided by MiKa contains a cross-site scripting vulnerability. On the site with the affected version of the plugin enabled, a logged-in user with a page-creating/editing privilege can embed some malicious script with a crafted HTTP request. When a victim user...
CVE-2026-33559
WordPress Plugin "OpenStreetMap" provided by MiKa contains a cross-site scripting vulnerability. On the site with the affected version of the plugin enabled, a logged-in user with a page-creating/editing privilege can embed some malicious script with a crafted HTTP request. When a victim user...
CVE-2026-33559
WordPress Plugin "OpenStreetMap" provided by MiKa contains a cross-site scripting vulnerability. On the site with the affected version of the plugin enabled, a logged-in user with a page-creating/editing privilege can embed some malicious script with a crafted HTTP request. When a victim user...
CVE-2026-25323
Missing Authorization vulnerability in MiKa OSM osm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects OSM: from n/a through = 6.1.12...
CVE-2026-25323
Missing Authorization vulnerability in MiKa OSM osm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects OSM: from n/a through = 6.1.12...
CVE-2026-25323
Missing Authorization vulnerability in MiKa OSM osm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects OSM: from n/a through = 6.1.12...
PT-2026-20693
Missing Authorization vulnerability in MiKa OSM osm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects OSM: from n/a through = 6.1.12...
EUVD-2025-146531
Malicious code in verify-aikun-mika npm...
Malicious code in verify-aikun-mika (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed6ccc85730f4f1661261b761e20603c1b5ff53124e0569c6a81fe5449bdf485 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
WordPress WP Microdata plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin WP Microdata versions = 1.0...
WordPress LeadBI Plugin for WordPress plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin LeadBI Plugin for WordPress versions = 1.7...
WordPress MultiVendorX plugin <= 4.2.23 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Mika in WordPress Plugin MultiVendorX versions = 4.2.23...
WordPress Fazyvo theme <= 1.6 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Theme Fazyvo versions = 1.6...
WordPress Industrial Lite theme <= 1.0.8 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Theme Industrial Lite versions = 1.0.8...
WordPress Tiger theme <= 2.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Theme Tiger versions = 2.0...
WordPress Tiger theme <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Theme Tiger versions = 2.0...
CVE-2025-31557
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MiKa OSM osm allows DOM-Based XSS.This issue affects OSM: from n/a through = 6.1.13...
WordPress Pearl plugin <= 1.3.9 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Mika in WordPress Plugin Pearl versions = 1.3.9...
WordPress Auto Post After Image Upload plugin <= 1.6 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Mika in WordPress Plugin Auto Post After Image Upload versions = 1.6...
WordPress CF7 Spreadsheets plugin <= 2.3.2 - Settings Change vulnerability
Settings Change vulnerability discovered by Mika in WordPress Plugin CF7 Spreadsheets versions = 2.3.2...