GO-2026-4782 Mattermost Boards Plugin fails to implement authorisation checks on comment block modifications in github.com/mattermost/mattermost-plugin-boards

Mattermost Boards Plugin fails to implement authorisation checks on comment block modifications in github.com/mattermost/mattermost-plugin-boards...

WordPress plugin Library Management System SQL注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

WordPress plugin Library Viewer 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

CVE-2025-10896

Multiple plugins for WordPress with the Jewel Theme Recommended Plugins Library are vulnerable to Unrestricted Upload of File with Dangerous Type via arbitrary plugin installation in all versions up to, and including, 1.0.2.3. This is due to missing capability checks on the...

EUVD-2024-28996

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2017-9301

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - plugins\audiofilter\libmpgatofixed32plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service invalid read and...

MAL-2025-29410 Malicious code in plugin-did-you-mean (npm)

The package plugin-did-you-mean was found to contain malicious code...

CVE-2025-42921

In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin...

CVE-2024-31085

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rob Marsh, SJ Post-Plugin Library allows Reflected XSS.This issue affects Post-Plugin Library: from n/a through 2.6.2.1...

CVE-2024-1929

Local Root Exploit via Configuration Dictionary in dnf5daemon-server before 5.1.17 allows a malicious user to impact Confidentiality and Integrity via Configuration Dictionary. There are issues with the D-Bus interface long before Polkit is invoked. The org.rpm.dnf.v0.SessionManager.opensession...

CVE-2024-31085

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rob Marsh, SJ Post-Plugin Library allows Reflected XSS.This issue affects Post-Plugin Library: from n/a through 2.6.2.1...

CVE-2024-31085 WordPress Post-Plugin Library plugin <= 2.6.2.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rob Marsh, SJ Post-Plugin Library allows Reflected XSS.This issue affects Post-Plugin Library: from n/a through 2.6.2.1...

CVE-2024-31085 WordPress Post-Plugin Library plugin <= 2.6.2.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rob Marsh, SJ Post-Plugin Library allows Reflected XSS.This issue affects Post-Plugin Library: from n/a through 2.6.2.1...

CVE-2024-31085

CVE-2024-31085 is a Reflected XSS in the WordPress plugin Post-Plugin Library (aka Rob Marsh, SJ Post-Plugin Library). The vulnerability stems from improper neutralization of user input during web page generation, enabling an attacker-controlled payload to be reflected in responses. Affected vers...

WordPress Plugin Post-Plugin Library 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

PT-2024-23753 · Unknown · Post-Plugin Library

Name of the Vulnerable Software and Affected Versions: Post-Plugin Library versions 2.6.2.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which can lead to Cross-site Scripting XSS, specifically Reflected XSS. Recommendations: For...

WordPress Post-Plugin Library plugin <= 2.6.2.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Post-Plugin Library versions = 2.6.2.1...

WordPress Post-Plugin Library Plugin <= 2.6.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Post-Plugin Library Type Plugin Vulnerable versions = 2.6.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31085 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c8fe5a2f8b83 Credits Dimas Maulana Required...

CVE-2023-52145

Cross-Site Request Forgery CSRF vulnerability in Marios Alexandrou Republish Old Posts.This issue affects Republish Old Posts: from n/a through 1.21...

WordPress Plugin Library Viewer Input Validation Error Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. An input validation error vulnerability...