71 matches found
CVE-2025-54046 WordPress Cost Calculator Plugin <= 7.4 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Cost Calculator allows Stored XSS. This issue affects Cost Calculator: from n/a through 7.4...
CVE-2025-54046
CVE-2025-54046 affects the WordPress Cost Calculator plugin (QuanticaLabs) for versions up to 7.4. It is a Stored Cross‑Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation. Exploitation could occur when a user with access to crafted input is able ...
PT-2025-34000 · Quanticalabs · Quanticalabs Medicenter
Name of the Vulnerable Software and Affected Versions: QuanticaLabs MediCenter - Health Medical Clinic versions n/a through 15.1 Description: The software contains a deserialization of untrusted data issue, which allows for object injection. Recommendations: Versions prior to 15.1 should be...
PT-2025-34012 · Quanticalabs · Quanticalabs Cost Calculator
Name of the Vulnerable Software and Affected Versions: QuanticaLabs Cost Calculator versions through 7.4 Description: The software contains an Improper Neutralization of Input During Web Page Generation vulnerability, specifically a Stored Cross-site Scripting XSS issue. This allows for the...
CVE-2025-54026
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...
CVE-2025-47554
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress css3webpricingtablesgrids allows Reflected XSS.This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through = 11.6...
CVE-2025-47554 WordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress allows Reflected XSS. This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through 11.6...
CVE-2025-47554 WordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress css3webpricingtablesgrids allows Reflected XSS.This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through = 11.6...
CVE-2025-54047
Missing Authorization vulnerability in QuanticaLabs Cost Calculator ql-cost-calculator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cost Calculator: from n/a through = 7.4...
CVE-2025-54026
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...
CVE-2025-54047 WordPress Cost Calculator plugin <= 7.4 - Broken Access Control Vulnerability
Missing Authorization vulnerability in QuanticaLabs Cost Calculator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Cost Calculator: from n/a through 7.4...
CVE-2025-54026 WordPress GymBase Theme Classes plugin <= 1.4 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...
CVE-2025-54026 WordPress GymBase Theme Classes plugin <= 1.4 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...
PT-2025-29765 · Quanticalabs · Quanticalabs Cost Calculator
Name of the Vulnerable Software and Affected Versions: QuanticaLabs Cost Calculator versions through 7.4 Description: A missing authorization issue exists in QuanticaLabs Cost Calculator due to incorrectly configured access control security levels. Recommendations: Versions prior to 7.4 should be...
PT-2025-29797 · WordPress · Quanticalabs Css3 Compare Pricing Tables For Wordpress
Name of the Vulnerable Software and Affected Versions: QuanticaLabs CSS3 Compare Pricing Tables for WordPress versions through 11.6 Description: The software contains a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for reflected XSS...
CVE-2025-32311
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom pressroom allows Reflected XSS.This issue affects Pressroom: from n/a through = 7.0...
CVE-2025-32311
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom pressroom allows Reflected XSS.This issue affects Pressroom: from n/a through = 7.0...
CVE-2025-32311 WordPress Pressroom - News Magazine WordPress Theme theme <= 6.9 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom - News Magazine WordPress Theme allows Reflected XSS. This issue affects Pressroom - News Magazine WordPress Theme: from n/a through 6.9...
CVE-2025-32311
CVE-2025-32311 affects the Pressroom – News Magazine WordPress Theme (vulnerable: n/a through 6.9). It is a Reflected XSS vulnerability caused by improper input neutralization during web page generation. Exploitation is possible via network access and requires user interaction; no patch is availa...
CVE-2025-32311 WordPress Pressroom theme <= 7.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom pressroom allows Reflected XSS.This issue affects Pressroom: from n/a through = 7.0...