DEBIAN-CVE-2026-44973

Billy is an interface filesystem abstraction for Go. Prior to 5.9.0, multiple path traversal issues exist across different components of go-billy. Insufficient path sanitization and boundary enforcement may allow crafted paths e.g., using .. to escape intended base directories. While go-billy was...

EUVD-2026-33071

Billy is an interface filesystem abstraction for Go. Prior to 5.9.0, multiple path traversal issues exist across different components of go-billy. Insufficient path sanitization and boundary enforcement may allow crafted paths e.g., using .. to escape intended base directories. While go-billy was...

CVE-2024-2423

The UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.2.6 due to insufficient input sanitization and output...

CVE-2024-2790

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Accordion widget in all versions up to, and including, 2.4.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2024-2280

The Better Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the widget link URL values in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

SQL Injection

WordPress Zero Spam plugin is vulnerable to SQL Injection. The vulnerability is due to insufficient sanitization and escaping of the order and orderby parameters before they are used in SQL queries in the admin dashboard, allowing attackers to inject malicious SQL statements and manipulate databa...

WordPress External Login plugin SQL Injection Vulnerability

The WordPress External Login plugin is mainly used to integrate WordPress login functionality with an external database system, allowing users to log in to the site directly through an external account. WordPress External Login plugin is prone to SQL injection vulnerability, which is caused by...

EUVD-2021-11522

Malware in sbrugna...

EUVD-2021-11713

Malware in sbrugna...

EUVD-2019-16954

Malware in sbrugna...

EUVD-2019-6579

Malware in sbrugna...

EUVD-2020-19480

Malware in sbrugna...

EUVD-2021-11618

Malware in sbrugna...

EUVD-2024-48903

Malicious code in bioql PyPI...

EUVD-2024-49796

Malicious code in bioql PyPI...

EUVD-2022-43171

Malicious code in bioql PyPI...

EUVD-2024-27299

Malicious code in bioql PyPI...

EUVD-2025-10320

Malicious code in bioql PyPI...

EUVD-2025-7381

Malicious code in bioql PyPI...

EUVD-2025-1521

Malicious code in bioql PyPI...