15840 matches found
EUVD-2023-59259
Malicious code in bioql PyPI...
EUVD-2023-34410
Malicious code in bioql PyPI...
EUVD-2023-0411
Malicious code in bioql PyPI...
EUVD-2022-6021
Malicious code in bioql PyPI...
EUVD-2023-44181
Malicious code in bioql PyPI...
EUVD-2023-23593
Malicious code in bioql PyPI...
EUVD-2024-33039
Malicious code in bioql PyPI...
EUVD-2022-7109
Malicious code in bioql PyPI...
EUVD-2024-17083
Malicious code in bioql PyPI...
EUVD-2023-24076
Malicious code in bioql PyPI...
CVE-2025-9045
The Easy Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widget parameters in versions less than, or equal to, 2.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-leve...
CVE-2025-7825
CVE-2025-7825 affects Schema Plugin For Divi, Gutenberg & Shortcodes (WordPress) up to version 4.3.2. The flaw is Object Instantiation via deserialization of untrusted input through the wpt_schema_breadcrumbs shortcode. Exploitation requires authenticated access at Contributor level or higher; th...
WordPress Epic Bootstrap Buttons plugin <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via icol Parameter vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via icol Parameter vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Epic Bootstrap Buttons versions = 1.0...
WordPress plugin WPRecovery SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress plug...
WordPress plugin Mobile Site Redirect 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request forgery...
PT-2025-40501
Name of the Vulnerable Software and Affected Versions Fintelligence Calculator plugin for WordPress versions up to and including 1.0.3 Description The Fintelligence Calculator plugin for WordPress is susceptible to Stored Cross-Site Scripting through the 'fintelligence-calculator' shortcode. This...
CVE-2025-10168
The Any News Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'any-ticker' shortcode in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate...
CVE-2025-10196
The Survey Anyplace plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'surveyanyplaceembed' shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
WordPress Rock Convert plugin <= 3.0.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Rock Convert versions = 3.0.1...
WordPress Nexa Blocks plugin <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Google Maps Widget vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Google Maps Widget vulnerability discovered by zer0gh0st in WordPress Plugin Nexa Blocks versions = 1.1.0...