12 matches found
CVE-2025-9897
The AP Background plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.2. This is due to missing or incorrect nonce validation on the advParallaxBackAdminSaveSlider function. This makes it possible for unauthenticated attackers to create or...
EUVD-2025-24152
Malicious code in bioql PyPI...
CVE-2025-9897
The AP Background plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.2. This is due to missing or incorrect nonce validation on the advParallaxBackAdminSaveSlider function. This makes it possible for unauthenticated attackers to create or...
EUVD-2025-32246
The AP Background plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.2. This is due to missing or incorrect nonce validation on the advParallaxBackAdminSaveSlider function. This makes it possible for unauthenticated attackers to create or...
CVE-2025-8859
A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is an unknown functionality of the file /native/admin/save-slider.php of the component File Upload Module. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit...
CVE-2025-8859
A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is an unknown functionality of the file /native/admin/save-slider.php of the component File Upload Module. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit...
CVE-2025-8859
A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is an unknown functionality of the file /native/admin/save-slider.php of the component File Upload Module. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit...
CVE-2025-8859 code-projects eBlog Site File Upload save-slider.php unrestricted upload
A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is an unknown functionality of the file /native/admin/save-slider.php of the component File Upload Module. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit...
CVE-2025-8859
CVE-2025-8859 affects code-projects’ eBlog Site 1.0, specifically the File Upload Module function in the file /native/admin/save-slider.php. The vulnerability involves unrestricted file upload, reported as exploitable remotely. Public disclosure exists, and multiple sources reinforce that an atta...
CVE-2025-8859 code-projects eBlog Site File Upload save-slider.php unrestricted upload
A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is an unknown functionality of the file /native/admin/save-slider.php of the component File Upload Module. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit...
Code-Projects eBlog Site 代码问题漏洞
Code-Projects eBlog Site is an open source blog site by Code-Projects. A code issue vulnerability exists in code-projects eBlog Site version 1.0, which stems from an unrestricted upload function in file /native/admin/save-slider.php...
PT-2025-32548 · Unknown · Eblog Site
Name of the Vulnerable Software and Affected Versions: eBlog Site version 1.0 Description: A vulnerability exists in the File Upload Module of eBlog Site 1.0, specifically within the /native/admin/save-slider.php file. This allows for unrestricted file uploads, and the attack can be launched...