CVE-2025-15586

OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if exploited can result in authentication bypass without knowledge of the victim account's password...

CVE-2025-15586

OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if exploited can result in authentication bypass without knowledge of the victim account's password...

CVE-2025-15586

OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if exploited can result in authentication bypass without knowledge of the victim account's password...

CVE-2025-15586

OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if exploited can result in authentication bypass without knowledge of the victim account's password...

CVE-2025-15586

OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if exploited can result in authentication bypass without knowledge of the victim account's password...

CVE-2025-15586

OpenGamePanel (OGP-Website) is affected by a type juggling flaw in PHP comparisons present in commits prior to 52f865a4fba763594453068acf8fa9e3fc38d663. If exploited, this can enable authentication bypass without knowledge of the victim’s password. Public references (Red Hat CVE page, NVD entry, ...

PT-2026-20593

Name of the Vulnerable Software and Affected Versions OpenGamePanel versions prior to git commit 52f865a4fba763594453068acf8fa9e3fc38d663 Description A type juggling flaw exists in OpenGamePanel. Exploitation of this flaw can lead to authentication bypass without requiring knowledge of the victim...

OGP-Website 安全漏洞

OGP-Website is a software developed under the Open Game Panel open source framework. OGP-Website has a security vulnerability that stems from type confusion, which may lead to authentication bypass...

EUVD-2025-8601

Malicious code in bioql PyPI...

EUVD-2025-7917

Malicious code in bioql PyPI...

CVE-2025-31437

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in David Miller WP-OGP wp-ogp allows Stored XSS.This issue affects WP-OGP: from n/a through = 1.0.5...

WordPress WP-OGP plugin <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin WP-OGP versions = 1.0.5...

CVE-2025-31437

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in David Miller WP-OGP wp-ogp allows Stored XSS.This issue affects WP-OGP: from n/a through = 1.0.5...

CVE-2025-31437

CVE-2025-31437 – WP-OGP stores XSS via improper input handling in WordPress WP-OGP (vulnerable up to 1.0.5). Root cause cited as improper neutralization of input during web page generation. Impact: stored cross-site scripting; exploitation would require user interaction after authentication as pe...

CVE-2025-31437 WordPress WP-OGP plugin <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in David Miller WP-OGP wp-ogp allows Stored XSS.This issue affects WP-OGP: from n/a through = 1.0.5...

CVE-2025-31437 WordPress WP-OGP <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in David Miller WP-OGP allows Stored XSS. This issue affects WP-OGP: from n/a through 1.0.5...

CVE-2025-30587

Cross-Site Request Forgery CSRF vulnerability in shawfactor LH OGP Meta lh-ogp-meta-tags allows Stored XSS.This issue affects LH OGP Meta: from n/a through = 1.73...

CVE-2025-30587

Cross-Site Request Forgery CSRF vulnerability in shawfactor LH OGP Meta lh-ogp-meta-tags allows Stored XSS.This issue affects LH OGP Meta: from n/a through = 1.73...

CVE-2025-30587

CVE-2025-30587 (LH OGP Meta) involves a Cross-Site Request Forgery (CSRF) in the LH OGP Meta WordPress plugin (up to version 1.73) that enables a Stored Cross-Site Scripting (XSS) condition. The CVSSv3.1 vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L with a base score of 7.1 (High). The p...

CVE-2025-30587 WordPress LH OGP Meta plugin <= 1.73 - CSRF to Stored XSS Vulnerability

Cross-Site Request Forgery CSRF vulnerability in shawfactor LH OGP Meta lh-ogp-meta-tags allows Stored XSS.This issue affects LH OGP Meta: from n/a through = 1.73...