EUVD-2022-41285

Malicious code in bioql PyPI...

CVE-2025-58787

CVE-2025-58787 involves the WordPress plugin Themify Popup. The vulnerability is a stored XSS caused by improper neutralization of input during web page generation, affecting Themify Popup versions up to and including 1.4.4. Exploitation would occur when user-supplied input is stored and later re...

CVE-2024-12071 Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media <= 1.4.4 - Missing Authorization to Unauthenticated Arbitrary Post Deletion

The Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the deletenetworkpost function in all versions up to, and including, 1.4.4. This makes it possible for...

PT-2023-29722 · Libsyn · Libsyn Publisher Hub

Name of the Vulnerable Software and Affected Versions: Libsyn Libsyn Publisher Hub plugin versions 1.4.4 and earlier Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into a...