47 matches found
CVE-2026-13333
The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via 'queryselect' Parameter in all versions up to, and including, 4.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...
EUVD-2026-39930
The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via 'queryselect' Parameter in all versions up to, and including, 4.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...
EUVD-2026-39671
Sales Representative SQL Injection in Groundhogg = 4.5 versions...
CVE-2026-57667
Sales Representative SQL Injection in Groundhogg = 4.5 versions...
PT-2026-52836
Name of the Vulnerable Software and Affected Versions Groundhogg versions prior to 4.6 Description An authenticated attacker can exploit a SQL Injection flaw in the Sales Representative feature. SQL Injection is a type of vulnerability that allows an attacker to interfere with the queries that an...
EUVD-2026-36971
Sales Representative Arbitrary File Deletion in Groundhogg = 4.4 versions...
PT-2026-49406
Name of the Vulnerable Software and Affected Versions Groundhogg versions prior to 4.5 Description The Sales Representative feature contains a path traversal flaw that allows for arbitrary file deletion. Recommendations Update to a version later than 4.4. Restrict access to the Sales Representati...
Orchid Security Recognized by Gartner® as a Representative Vendor of Guardian Agents
New York, United States, 17th March 2026, CyberNewswire...
Incremental Federated Learning for Intrusion Detection in IoT Networks under Evolving Threat Landscape
The expansion of Internet of Things IoT devices has increased the attack surface of networks, necessitating a robust and adaptive intrusion detection systems. Machine learning based systems have been considered promising in enhancing the detection performance. Federated learning settings enabled ...
EUVD-2025-89191
Malicious code in representativemarmotz3n npm...
EUVD-2025-74298
Malicious code in representativehummingbirdjade-93 npm...
EUVD-2025-75820
Malicious code in representativefrog-silentdev npm...
EUVD-2025-78442
Malicious code in representativewhitefishz3n npm...
EUVD-2025-78444
Malicious code in representativesparrowz3n npm...
MAL-2025-107908 Malicious code in representative_crayfish_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f6ae3b50514696f2d900def8e6fc417c7af472b32c0e352a15f9c391bfbf3b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-80741
Malicious code in representativewhitefish0xrequest npm...
EUVD-2025-73989
Malicious code in representativeopossumz3n npm...
EUVD-2025-73988
Malicious code in representativescorpionz3n npm...
Malicious code in representative-cyan-marlin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d23d497630b1971587eeb2edf2533f84f9ee0d070332f881fd6347e92790fcff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in representative-crimson-panther (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37d89cd3cfbb5376aa8091140e6c592392eceb6d841b76826f1d7a000e0d4d76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...