Lucene search
K

27 matches found

The Hacker News
The Hacker News
added 2026/03/27 1:57 p.m.10 views

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

Cybersecurity researchers have disclosed details of a now-patched bug impacting Open VSX's pre-publish scanning pipeline to cause the tool to allow a malicious Microsoft Visual Studio Code VS Code extension to pass the vetting process and go live in the registry. "The pipeline had a single boolea...

6AI score
Exploits0
The Hacker News
The Hacker News
added 2026/02/04 6:26 a.m.10 views

Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions

The Eclipse Foundation, which maintains the Open VSX Registry, has announced plans to enforce security checks before Microsoft Visual Studio Code VS Code extensions are published to the open-source repository to combat supply chain threats. The move marks a shift from a reactive to a proactive...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-48510

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00351EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28515

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00183EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/29 2:26 p.m.11 views

CVE-2025-53323

Missing Authorization vulnerability in danbriapps Pre-Publish Post Checklist pre-publish-post-checklist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pre-Publish Post Checklist: from n/a through = 3.1...

4.3CVSS5.9AI score0.00183EPSS
Exploits0References1
NVD
NVD
added 2025/06/27 2:15 p.m.4 views

CVE-2025-53323

Missing Authorization vulnerability in danbriapps Pre-Publish Post Checklist pre-publish-post-checklist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pre-Publish Post Checklist: from n/a through = 3.1...

4.3CVSS0.00183EPSS
Exploits0References1
CVE
CVE
added 2025/06/27 1:21 p.m.17 views

CVE-2025-53323

CVE-2025-53323: WordPress Pre-Publish Post Checklist

4.3CVSS5.9AI score0.00183EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/27 1:21 p.m.12 views

CVE-2025-53323 WordPress Pre-Publish Post Checklist plugin <= 3.1 - Broken Access Control Vulnerability

Missing Authorization vulnerability in danbriapps Pre-Publish Post Checklist pre-publish-post-checklist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pre-Publish Post Checklist: from n/a through = 3.1...

4.3CVSS0.00183EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/27 12:0 a.m.4 views

WordPress plugin Pre-Publish Post Checklist 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS6.3AI score0.00183EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:19 p.m.14 views

CVE-2022-1758

The Genki Pre-Publish Reminder WordPress plugin through 1.4.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored XSS as well as RCE when custom code is added via the plugin settings...

8.8CVSS5.9AI score0.00597EPSS
Exploits2References1
NVD
NVD
added 2024/06/19 12:15 p.m.30 views

CVE-2023-44151

Missing Authorization vulnerability in Brainstorm Force Pre-Publish Checklist.This issue affects Pre-Publish Checklist: from n/a through 1.1.1...

8.8CVSS0.00351EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 12:15 p.m.3 views

CVE-2023-44151

Missing Authorization vulnerability in Brainstorm Force Pre-Publish Checklist.This issue affects Pre-Publish Checklist: from n/a through 1.1.1...

8.8CVSS5.8AI score0.00351EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/19 11:49 a.m.15 views

CVE-2023-44151 WordPress Pre-Publish Checklist plugin <= 1.1.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Brainstorm Force Pre-Publish Checklist.This issue affects Pre-Publish Checklist: from n/a through 1.1.1...

5.4CVSS5.8AI score0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/19 11:49 a.m.28 views

CVE-2023-44151 WordPress Pre-Publish Checklist plugin <= 1.1.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Brainstorm Force Pre-Publish Checklist.This issue affects Pre-Publish Checklist: from n/a through 1.1.1...

5.4CVSS0.00351EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/19 12:0 a.m.5 views

PT-2024-13178 · Brainstorm Force · Pre-Publish Checklist

Name of the Vulnerable Software and Affected Versions: Pre-Publish Checklist versions 1.1.1 and earlier Description: The issue is related to a Missing Authorization vulnerability in the Brainstorm Force Pre-Publish Checklist. Recommendations: For versions 1.1.1 and earlier, update to a version th...

8.8CVSS6.8AI score0.00351EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/06/19 12:0 a.m.6 views

WordPress plugin Pre-Publish Checklist security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.8AI score0.00351EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2023/11/23 12:0 a.m.35 views

Pre-Publish Checklist < 1.1.2 - Insecure Direct Object Reference to Arbitrary Post '_ppc_meta_key' Update

Description The Pre-Publish Checklist plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 1.1.1 via the ppcmetaboxajaxaddhandler and ppcmetaboxajaxdeletehandler functions due to missing validation on a user controlled key. This can allow...

6.9AI score0.00351EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/09/26 12:0 a.m.16 views

WordPress Pre-Publish Checklist Plugin <= 1.1.1 is vulnerable to Broken Access Control

Software Pre-Publish Checklist Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.1.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-44151 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 94f8d9a5952c Credits Rafie Muhammad Patchsta...

8.8CVSS6.9AI score0.00351EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2022/06/15 12:0 a.m.26 views

WordPress Genki Pre-Publish Reminder plugin cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS8.5AI score0.00597EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/06/13 1:15 p.m.7 views

CVE-2022-1758

The Genki Pre-Publish Reminder WordPress plugin through 1.4.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored XSS as well as RCE when custom code is added via the plugin settings...

8.8CVSS5.9AI score0.00597EPSS
Exploits2References2
Rows per page
Query Builder