CVE-2025-67549 WordPress oik plugin <= 4.15.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bobbingwide oik oik allows DOM-Based XSS.This issue affects oik: from n/a through = 4.15.3...

CVE-2025-67549 WordPress oik plugin <= 4.15.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bobbingwide oik oik allows DOM-Based XSS.This issue affects oik: from n/a through = 4.15.3...

CVE-2025-67549

CVE-2025-67549 affects the WordPress plugin oik up to version 4.15.3. Root cause: improper input neutralization during web page generation, enabling DOM-based XSS. Impact: DOM-based XSS with Low–Medium confidentiality, integrity, and availability effects (CVSS v3.1 base 6.5). Affected product: oik

WordPress oik plugin <= 4.15.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin oik versions = 4.15.3...

EUVD-2024-47498

Malicious code in bioql PyPI...

CVE-2025-54670 WordPress oik Plugin <= 4.15.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bobbingwide oik oik allows Reflected XSS.This issue affects oik: from n/a through = 4.15.2...

WordPress plugin oik 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress oik Plugin <= 4.15.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin oik versions = 4.15.2...

CVE-2025-54671

Cross-Site Request Forgery CSRF vulnerability in bobbingwide oik oik allows Cross Site Request Forgery.This issue affects oik: from n/a through = 4.15.2...

CVE-2025-54671 WordPress oik plugin <= 4.15.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in bobbingwide oik oik allows Cross Site Request Forgery.This issue affects oik: from n/a through = 4.15.2...

CVE-2025-54671 WordPress oik plugin <= 4.15.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in bobbingwide oik oik allows Cross Site Request Forgery.This issue affects oik: from n/a through = 4.15.2...

WordPress plugin oik 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...

CVE-2024-43356

CVE-2024-43356 is a CSRF vulnerability in the WordPress plugin oik, affecting versions n/a through 4.12.0. The vulnerability concerns Cross‑Site Request Forgery enabling unintended actions within the application. Public details specify the affected software and version range; no concrete root-cau...

CVE-2024-43356 WordPress oik plugin <= 4.12.0 - Arbitrary File Deletion vulnerability

Cross-Site Request Forgery CSRF vulnerability in bobbingwide.This issue affects oik: from n/a through 4.12.0...

CVE-2024-43356 WordPress oik plugin <= 4.12.0 - Arbitrary File Deletion vulnerability

Cross-Site Request Forgery CSRF vulnerability in bobbingwide.This issue affects oik: from n/a through 4.12.0...

WordPress plugin oik 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...

WordPress oik plugin <= 4.12.0 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin oik versions = 4.12.0...

WordPress oik Plugin <= 4.12.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software oik Type Plugin Vulnerable versions = 4.12.0 Fixed in 4.12.1 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-43356 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 865f6e2dc335 Credits Abdi Pranata Required privile...

CVE-2024-6391

CVE-2024-6391 (oik WordPress plugin) is a Stored Cross-Site Scripting vulnerability in the bw_button shortcode. The issue affects all versions up to 4.10.3 and arises from insufficient input sanitization and output escaping of user-supplied attributes. Successful exploitation requires authenticat...

CVE-2024-6391 oik <= 4.10.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via bw_button Shortcode

The oik plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bwbutton shortcode in all versions up to, and including, 4.10.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, wi...