CVE-2025-49344 WordPress SensitiveTagCloud plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in reneade SensitiveTagCloud sensitive-tag-cloud allows Stored XSS.This issue affects SensitiveTagCloud: from n/a through = 1.4.1...

PT-2025-54277

Name of the Vulnerable Software and Affected Versions SensitiveTagCloud versions through 1.4.1 Description A Cross-Site Request Forgery CSRF issue exists in SensitiveTagCloud, which also allows for Stored Cross-Site Scripting XSS. This allows an attacker to potentially perform actions on behalf o...

EUVD-2023-28006

Malicious code in bioql PyPI...

BIT-DISCOURSE-2023-23935 Presence of restricted personal Discourse messages may be leaked if tagged with a tag

Discourse is an open-source messaging platform. In versions 3.0.1 and prior on the stable branch and versions 3.1.0.beta2 and prior on the beta and tests-passed branches, the count of personal messages displayed for a tag is a count of all personal messages regardless of whether the personal...

Design/Logic Flaw

Discourse is an open-source discussion platform. Prior to version 3.0.1 of the stable branch and version 3.1.0.beta2 of the beta and tests-passed branches, the count of topics displayed for a tag is a count of all regular topics regardless of whether the topic is in a read restricted category or...