12 matches found
WordPress Nirweb Support <2.8.2 - SQL Injection
WordPress Nirweb support plugin before 2.8.2 contains a SQL injection vulnerability. The plugin does not sanitize and escape a parameter before using it in a SQL statement via an AJAX action. An attacker can possibly obtain sensitive information from a database, modify data, and/or execute...
EUVD-2025-2921
Malicious code in bioql PyPI...
CVE-2025-22695
Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...
CVE-2025-22695
Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...
CVE-2025-22695 WordPress Nirweb support plugin <= 3.0.3 - Broken Access Control vulnerability
Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...
CVE-2025-22695
CVE-2025-22695 is a Broken Access Control vulnerability in the WordPress Nirweb support plugin, affecting Nirweb support versions n/a through 3.0.3. It enables an authorization bypass via a user-controlled key. The available data list CVSS v3.1 base score 4.3 (Medium). Exploitation status is not ...
CVE-2025-22695 WordPress Nirweb support plugin <= 3.0.3 - Broken Access Control vulnerability
Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support nirweb-support.This issue affects Nirweb support: from n/a through = 3.0.3...
WordPress plugin Nirweb support 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...
PT-2025-4630 · Nirweb · Nirweb
Name of the Vulnerable Software and Affected Versions: Nirweb support versions n/a through 3.0.3 Description: The issue is related to an Authorization Bypass Through User-Controlled Key, which affects the Nirweb support. This allows for potential unauthorized access. No information is provided...
WordPress Nirweb support plugin <= 3.0.3 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Fariq Fadillah Gusti Insani Patchstack Alliance in WordPress Plugin Nirweb support versions = 3.0.3...
VulnCheck KEV: CVE-2022-0781
The Nirweb support WordPress plugin before 2.8.2 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to an SQL injection...
WordPress Nirweb support plugin <= 2.7.9 - Unauthenticated SQL Injection (SQLi) vulnerability
Unauthenticated SQL Injection SQLi vulnerability discovered by cydave in WordPress Nirweb support plugin versions = 2.7.9. Solution Update the WordPress Nirweb support plugin to the latest available version at least 2.8.2...