WordPress Nirweb Support <2.8.2 - SQL Injection

WordPress Nirweb support plugin before 2.8.2 contains a SQL injection vulnerability. The plugin does not sanitize and escape a parameter before using it in a SQL statement via an AJAX action. An attacker can possibly obtain sensitive information from a database, modify data, and/or execute...

EUVD-2025-2921

Malicious code in bioql PyPI...

CVE-2025-22695

Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...

CVE-2025-22695

Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...

CVE-2025-22695 WordPress Nirweb support plugin <= 3.0.3 - Broken Access Control vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...

CVE-2025-22695 WordPress Nirweb support plugin <= 3.0.3 - Broken Access Control vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...

CVE-2025-22695

CVE-2025-22695 is a Broken Access Control vulnerability in the WordPress Nirweb support plugin, affecting Nirweb support versions n/a through 3.0.3. It enables an authorization bypass via a user-controlled key. The available data list CVSS v3.1 base score 4.3 (Medium). Exploitation status is not ...

WordPress plugin Nirweb support 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

PT-2025-4630 · Nirweb · Nirweb

Name of the Vulnerable Software and Affected Versions: Nirweb support versions n/a through 3.0.3 Description: The issue is related to an Authorization Bypass Through User-Controlled Key, which affects the Nirweb support. This allows for potential unauthorized access. No information is provided...

WordPress Nirweb support plugin <= 3.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Fariq Fadillah Gusti Insani Patchstack Alliance in WordPress Plugin Nirweb support versions = 3.0.3...

VulnCheck KEV: CVE-2022-0781

The Nirweb support WordPress plugin before 2.8.2 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to an SQL injection...

WordPress Nirweb support plugin <= 2.7.9 - Unauthenticated SQL Injection (SQLi) vulnerability

Unauthenticated SQL Injection SQLi vulnerability discovered by cydave in WordPress Nirweb support plugin versions = 2.7.9. Solution Update the WordPress Nirweb support plugin to the latest available version at least 2.8.2...