CVE-2025-68033

Insertion of Sensitive Information Into Sent Data vulnerability in Brecht Custom Related Posts custom-related-posts allows Retrieve Embedded Sensitive Data.This issue affects Custom Related Posts: from n/a through = 1.8.0...

CVE-2025-68033 WordPress Custom Related Posts plugin <= 1.8.0 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Brecht Custom Related Posts custom-related-posts allows Retrieve Embedded Sensitive Data.This issue affects Custom Related Posts: from n/a through = 1.8.0...

CVE-2025-68033 WordPress Custom Related Posts plugin <= 1.8.0 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Brecht Custom Related Posts allows Retrieve Embedded Sensitive Data.This issue affects Custom Related Posts: from n/a through 1.8.0...

CVE-2025-68033

The CVE-2025-68033 entry concerns Custom Related Posts (Brecht) for WordPress, affecting versions up to 1.8.0. It is an Unauthenticated Information Exposure vulnerability described as Insertion of Sensitive Information Into Sent Data, enabling retrieval of embedded sensitive data. Wordfence detai...

CVE-2025-15460

creationtimestamp| type| source ---|---|--- 2026-01-05 06:28:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbnsqbfqyb2b 2026-01-05 06:29:20+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbnsqwbesx2p 2026-01-05 07:00:40+00:00|...

CVE-2025-15459

creationtimestamp| type| source ---|---|--- 2026-01-05 06:28:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbnspzutnm2v 2026-01-05 06:29:12+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbnsqownet2z 2026-01-05 07:00:40+00:00|...

WordPress plugin Custom Related Posts 安全漏洞

...

PT-2026-1268

Name of the Vulnerable Software and Affected Versions Brecht Custom Related Posts versions through 1.8.0 Description A flaw exists in Brecht Custom Related Posts that allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. Recommendations Upda...

CVE-2026-0566

A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/editposts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit has been...

GHSA-35PP-GGH6-C59C

creationtimestamp| type| source ---|---|--- 2026-01-02 18:47:00+00:00| published-proof-of-concept| Telegram/909Vqfy1t-GN-jmnJRhonTHruzsnwKWBWvcbC9dRm7P3pmc 2026-01-02 21:51:37+00:00| published-proof-of-concept| Telegram/76XS8g8vzfJZzLhIc6cIEumxaOFppJoCx-jsKbwFQGseRQ...

CVE-2026-0566

A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/editposts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit has been...

CVE-2026-0566

A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/editposts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit has been...

CVE-2026-0566 code-projects Content Management System edit_posts.php unrestricted upload

A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/editposts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit has been...

CVE-2026-0566 code-projects Content Management System edit_posts.php unrestricted upload

A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/editposts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit has been...

CVE-2026-0566

CVE-2026-0566 affects code-projects Content Management System 1.0. The vulnerability lies in the /admin/edit_posts.php script where manipulating the image parameter enables unrestricted file uploads. Exploitation is possible remotely, and the exploit has been publicly disclosed. Public data show ...

CVE-2025-15428

creationtimestamp| type| source ---|---|--- 2026-01-02 06:00:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbg7qiihyt2p 2026-01-02 07:43:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbgfjlltmq2e 2026-01-02 18:53:57+00:00| seen|...

CVE-2025-14998

creationtimestamp| type| source ---|---|--- 2026-01-02 03:43:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbfy42vpmw2u 2026-01-02 03:49:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbfygjrrqv2p 2026-01-02 07:47:35+00:00| seen|...

PT-2026-1117

Name of the Vulnerable Software and Affected Versions Emlog version 2.5.23 Description Emlog version 2.5.23’s article creation functionality is susceptible to cross-site request forgery CSRF. This allows an attacker to force a user to post an article containing arbitrary content. When combined wi...

PT-2026-1107

Name of the Vulnerable Software and Affected Versions code-projects Content Management System version 1.0 Description A security issue exists in code-projects Content Management System. The manipulation of the image argument in a file, /admin/edit posts.php, allows for unrestricted file upload...

CVE-2025-68272

creationtimestamp| type| source ---|---|--- 2026-01-01 17:57:40+00:00| published-proof-of-concept| https://github.com/SignalK/signalk-server/security/advisories/GHSA-7rqc-ff8m-7j23 2026-01-01 18:22:04+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbeyppmdz32z 2026-01-01...