MAL-2025-124028 Malicious code in vida-lontong51-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d38584aa40565b73dc653090ad8b9ccb7af9cc8be731ae229e8e610f76c1092d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

CVE-2019-20203

The Authorized Addresses feature in the Postie plugin 1.9.40 for WordPress allows remote attackers to publish posts by spoofing the From information of an email message...

WordPress < 3.0.3 XML-RPC Interface Access Restriction Bypass

Binary data 9112.prm...

CVE-2010-5106

The XML-RPC remote publishing interface in xmlrpc.php in WordPress before 3.0.3 does not properly check capabilities, which allows remote authenticated users to bypass intended access restrictions, and publish, edit, or delete posts, by leveraging the Author or Contributor role...

DEBIAN-CVE-2010-5106

The XML-RPC remote publishing interface in xmlrpc.php in WordPress before 3.0.3 does not properly check capabilities, which allows remote authenticated users to bypass intended access restrictions, and publish, edit, or delete posts, by leveraging the Author or Contributor role...

CVE-2010-5106

The XML-RPC remote publishing interface in xmlrpc.php in WordPress before 3.0.3 does not properly check capabilities, which allows remote authenticated users to bypass intended access restrictions, and publish, edit, or delete posts, by leveraging the Author or Contributor role...

Design/Logic Flaw

The XML-RPC remote publishing interface in xmlrpc.php in WordPress before 3.0.3 does not properly check capabilities, which allows remote authenticated users to bypass intended access restrictions, and publish, edit, or delete posts, by leveraging the Author or Contributor role...

CVE-2010-5106

CVE-2010-5106 affects WordPress: the XML-RPC remote publishing interface in xmlrpc.php allows a user with Author or Contributor roles to bypass access restrictions due to improper capability checks, enabling publishing, editing, or deletion of posts. Affected: WordPress versions before 3.0.3. Roo...

WordPress < 3.0.3 XML-RPC Interface Access Restriction Bypass

According to its version number, the installation of WordPress is prior to 3.0.3. It is, therefore, affected by a security bypass vulnerability. Certain access control restrictions are not properly enforced, which could allow a remote, authenticated user to perform unauthorized actions such as...