273 matches found
WordPress Trending/Popular Post Slider and Widget plugin <= 1.8.6 - Backdoor vulnerability
Backdoor vulnerability discovered by ? in WordPress Plugin Trending/Popular Post Slider and Widget versions = 1.8.6...
PT-2026-5759
Name of the Vulnerable Software and Affected Versions OpenClaw affected versions not specified Description The software contains a remote code execution issue, a path traversal issue, and a server-side request forgery SSRF protection bypass. The issue is considered serious. Recommendations At the...
Arsink Spyware Posing as WhatsApp, YouTube, Instagram, TikTok Hits 143 Countries
Another day, another Android malware campaign targeting unsuspecting users worldwide by masquerading as popular apps...
CVE-2026-24587
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587
CVE-2026-24587 affects the WordPress plugin AJAX Hits Counter + Popular Posts Widget (ajax-hits-counter). Connected sources confirm a Missing Authorization / Broken Access Control vulnerability in this plugin, affecting versions up to and including 0.10.210305. Core details from Red Hat/NVD/CVE l...
CVE-2026-24587 WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587 WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
CVE-2026-24587
Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Hits Counter + Popular Posts Widget: from n/a through = 0.10.210305...
PT-2026-4424
Name of the Vulnerable Software and Affected Versions kutsy AJAX Hits Counter + Popular Posts Widget versions through 0.10.210305 Description An issue exists in kutsy AJAX Hits Counter + Popular Posts Widget related to incorrectly configured access control security levels, potentially allowing...
WordPress plugin AJAX Hits Counter + Popular Posts Widget security vulnerabilities
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
WordPress AJAX Hits Counter + Popular Posts Widget plugin <= 0.10.210305 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin AJAX Hits Counter + Popular Posts Widget versions = 0.10.210305...
EUVD-2025-89472
Malicious code in popularfelidaez3n npm...
EUVD-2025-76001
Malicious code in popularmeadowlark-tool npm...
Malicious code in popular_meadowlark-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d94753387b06e961c8f03213d1e876caf1ff84f4f6a3e01b3f0ab9be671448c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-78593
Malicious code in popularopossumz3n npm...
EUVD-2025-80920
Malicious code in popularswallowdumbs npm...
EUVD-2025-62621
Malicious code in popularchickadeez3n npm...
EUVD-2025-62618
Malicious code in popularelephantrequirement npm...
EUVD-2025-62614
Malicious code in popularwhalez3n npm...