EUVD-2026-24031

OpenBao: Decompression Bomb via Unbounded Copy in OCI Plugin Extraction DoS...

WordPress plugin Category Image 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Versions...

Malicious code in plugin-image-generation (npm)

The package plugin-image-generation was found to contain malicious code...

Malicious code in vite-plugin-image-loader (npm)

The package vite-plugin-image-loader was found to contain malicious code...

MAL-2025-29412 Malicious code in plugin-image-generation (npm)

The package plugin-image-generation was found to contain malicious code...

CVE-2025-24765 WordPress Image Shadow plugin <= 1.1.0 - Arbitrary File Deletion Vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RobMarsh Image Shadow image-shadow allows Path Traversal.This issue affects Image Shadow: from n/a through = 1.1.0...

GHSA-69P4-J5V5-X234 Server/API for Vela Insecure Variable Substitution

Impact Vela pipelines can use variable substitution combined with insensitive fields like parameters, image and entrypoint to inject secrets into a plugin/image and — by using common substitution string manipulation — can bypass log masking and expose secrets without the use of the commands block...

Insecure Variable Substitution in Vela

Impact Vela pipelines can use variable substitution combined with insensitive fields like parameters, image and entrypoint to inject secrets into a plugin/image and — by using common substitution string manipulation — can bypass log masking and expose secrets without the use of the commands block...

WordPress WP-Smushit 3.0.2 SQL Injection

Exploit Title : WordPress WP-Smushit Plugins 3.0.2 SQL Injection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 28/01/2019 Vendor Homepage : premium.wpmudev.org Software Download Link : downloads.wordpress.org/plugin/wp-smushit.3.0.2.zip Software Information Li...

CVE-2017-1002015

Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/adminsetting.php via selectMulGallery parameter...

UBUNTU-CVE-2011-3881

WebKit, as used in Google Chrome before 15.0.874.102 and Android before 4.4, allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS UXSS attacks via vectors related to 1 the DOMWindow::clear function and use of a selection object, 2 the...

e107 Plugin Image Gallery 0.9.6.2 - SQL Injection

e107 Plugin Image Gallery 0.9.6.2 - SQL Injection e107 Plugin Akira Powered's "Image Gallery" Remote SQL-injetion Vulnerability Author: boom3rang Site: www.khg-crew.ws Greetz: KHG & H!tm@N & chs & redc00de & proxy-ki11er Site: www.khg-crew.ws - Download Plugin:...

e107 Plugin Image Gallery 0.9.6.2 (image) SQL Injection Vulnerability

No description provided by source. e107 Plugin Akira Powered's "Image Gallery" Remote SQL-injetion Vulnerability Author: boom3rang Site: www.khg-crew.ws Greetz: KHG & H!tm@N & chs & redc00de & proxy-ki11er Site: www.khg-crew.ws - Download Plugin: http://www.akirapowered.org/download.php?view.73 -...

e107 Plugin Image Gallery 0.9.6.2 (image) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ===================================================================== e107 Plugin Image Gallery 0.9.6.2 image SQL Injection Vulnerability ===================================================================== - Download Plugin:...