273 matches found
WordPress Trending/Popular Post Slider and Widget plugin <= 1.8.6 - Backdoor vulnerability
Backdoor vulnerability discovered by ? in WordPress Plugin Trending/Popular Post Slider and Widget versions = 1.8.6...
PT-2026-5759
Name of the Vulnerable Software and Affected Versions OpenClaw affected versions not specified Description The software contains a remote code execution issue, a path traversal issue, and a server-side request forgery SSRF protection bypass. The issue is considered serious. Recommendations At the...
Arsink Spyware Posing as WhatsApp, YouTube, Instagram, TikTok Hits 143 Countries
Another day, another Android malware campaign targeting unsuspecting users worldwide by masquerading as popular apps...
CVE-2026-24587
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587 WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587 WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587
CVE-2026-24587 affects the WordPress plugin AJAX Hits Counter + Popular Posts Widget (ajax-hits-counter). Connected sources confirm a Missing Authorization / Broken Access Control vulnerability in this plugin, affecting versions up to and including 0.10.210305. Core details from Red Hat/NVD/CVE l...
WordPress plugin AJAX Hits Counter + Popular Posts Widget security vulnerabilities
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-4424
Name of the Vulnerable Software and Affected Versions kutsy AJAX Hits Counter + Popular Posts Widget versions through 0.10.210305 Description An issue exists in kutsy AJAX Hits Counter + Popular Posts Widget related to incorrectly configured access control security levels, potentially allowing...
WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin AJAX Hits Counter + Popular Posts Widget versions = 0.10.210305...
EUVD-2025-89472
Malicious code in popularfelidaez3n npm...
Malicious code in popular_meadowlark-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d94753387b06e961c8f03213d1e876caf1ff84f4f6a3e01b3f0ab9be671448c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-76001
Malicious code in popularmeadowlark-tool npm...
EUVD-2025-78593
Malicious code in popularopossumz3n npm...
EUVD-2025-80920
Malicious code in popularswallowdumbs npm...
EUVD-2025-62614
Malicious code in popularwhalez3n npm...
Malicious code in popular_elephant_requirement (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d81e6eea89b53fb3ce9633f3c79d881c2747ae6637cb4f7f5ad4ff452f90d3e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-62618
Malicious code in popularelephantrequirement npm...