EUVD-2025-28209

Malicious code in bioql PyPI...

EUVD-2025-27945

Malicious code in bioql PyPI...

CVE-2025-39368

Missing Authorization vulnerability in ed4becky Rootspersona rootspersona allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rootspersona: from n/a through = 3.7.5...

CVE-2025-48344

Cross-Site Request Forgery CSRF vulnerability in ed4becky Rootspersona rootspersona allows Cross Site Request Forgery.This issue affects Rootspersona: from n/a through = 3.7.5...

CVE-2025-39368

Missing Authorization vulnerability in ed4becky Rootspersona rootspersona allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rootspersona: from n/a through = 3.7.5...

WordPress Rootspersona plugin <= 3.7.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by domiee13 Patchstack Alliance in WordPress Plugin Rootspersona versions = 3.7.5...

CVE-2025-39368

CVE-2025-39368 affects the WordPress Rootspersona plugin (versions n/a through 3.7.5). The issue is described as a Missing Authorization vulnerability that enables exploitation of incorrectly configured access control security levels (i.e., Broken Access Control). Connected sources consistently i...

CVE-2025-39368 WordPress Rootspersona plugin <= 3.7.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in ed4becky Rootspersona rootspersona allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rootspersona: from n/a through = 3.7.5...

CVE-2025-39368 WordPress Rootspersona plugin <= 3.7.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in ed4becky Rootspersona rootspersona allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rootspersona: from n/a through = 3.7.5...

WordPress Rootspersona plugin <= 3.7.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by domiee13 Patchstack Alliance in WordPress Plugin Rootspersona versions = 3.7.5...

CVE-2025-48344

Cross-Site Request Forgery CSRF vulnerability in ed4becky Rootspersona rootspersona allows Cross Site Request Forgery.This issue affects Rootspersona: from n/a through = 3.7.5...

CVE-2025-48344

CVE-2025-48344 concerns the WordPress plugin Rootspersona (ed4becky) and describes a CSRF vulnerability affecting Rootspersona versions up to 3.7.5. The CVE lists a CVSS v3.1 base score of 5.4 (Medium) with network access required and user interaction, and the root cause is a CSRF condition as de...

CVE-2025-48344 WordPress Rootspersona plugin <= 3.7.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in ed4becky Rootspersona rootspersona allows Cross Site Request Forgery.This issue affects Rootspersona: from n/a through = 3.7.5...

CVE-2025-48344 WordPress Rootspersona <= 3.7.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in ed4becky Rootspersona allows Cross Site Request Forgery. This issue affects Rootspersona: from n/a through 3.7.5...

PT-2025-21994 · Unknown · Rootspersona

Name of the Vulnerable Software and Affected Versions: Rootspersona versions 3.7.5 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized actions to be performed on behalf of a user. This issue may be exploited by an attacker to perform action...

WordPress plugin Rootspersona 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...

WordPress plugin Rootspersona 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security...

PT-2025-22026 · Ed4Becky · Rootspersona

Name of the Vulnerable Software and Affected Versions: ed4becky Rootspersona versions n/a through 3.7.5 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions n/a...