5 matches found
EUVD-2025-23782
Malicious code in bioql PyPI...
CVE-2025-6994
The Reveal Listing plugin by smartdatasoft for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.3. This is due to the plugin allowing users who are registering new accounts to set their own role or by supplying 'listinguserrole' field. This makes it possible for...
CVE-2025-6994 Reveal Listing <= 3.3 - Unauthenticated Privilege Escalation
The Reveal Listing plugin by smartdatasoft for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.3. This is due to the plugin allowing users who are registering new accounts to set their own role or by supplying 'listinguserrole' field. This makes it possible for...
CVE-2025-6994 Reveal Listing <= 3.3 - Unauthenticated Privilege Escalation
The Reveal Listing plugin by smartdatasoft for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.3. This is due to the plugin allowing users who are registering new accounts to set their own role or by supplying 'listinguserrole' field. This makes it possible for...
PT-2025-32096 · WordPress · Reveal Listing
Name of the Vulnerable Software and Affected Versions: Reveal Listing plugin for WordPress versions up to and including 3.3 Description: The Reveal Listing plugin for WordPress allows users registering new accounts to set their own role via the listing user role field. This enables unauthenticate...